15:01:52 #startmeeting security-sig 15:01:53 Meeting started Thu Apr 5 15:01:52 2018 UTC and is due to finish in 60 minutes. The chair is lhinds. Information about MeetBot at http://wiki.debian.org/MeetBot. 15:01:54 Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. 15:01:56 The meeting name has been set to 'security_sig' 15:02:00 #chair gagehugo 15:02:01 Current chairs: gagehugo lhinds 15:02:06 #topic agenda 15:02:16 #link https://etherpad.openstack.org/p/security-agenda 15:02:37 lhinds I slimmed down the agenda a bit, feel free to undo any of that if it was too much 15:02:55 gagehugo: no, good job..it had some stale stuff in there. 15:03:01 gagehugo: i prefer this look 15:03:20 gagehugo: has the guy from Tatu been able to make the meeting? 15:03:46 he reached out to me a few weeks ago, but otherwise I haven't seen him 15:04:05 could email him and see if he can make this time? 15:04:18 gagehugo: ack, will drop him an email for next meeting 15:04:30 any one have other items they would like to add? 15:04:38 (agenda that is) 15:05:34 k, so I think we can skip documentation 15:05:47 no patches need review and no key items as far as I am aware 15:05:58 #topic Keystone Threat Analysis 15:06:09 nice work on the patches gagehugo 15:06:24 \o/ almost there 15:06:30 whats the current state of the VMT +2ing? (goes to take a look.) 15:07:14 so I will merge this: https://review.openstack.org/#/c/447139/ 15:07:28 we got +1's from VMT and sec-core on keystone 15:07:54 sounds good 15:09:03 fungi: what's needed for this governance patch: https://review.openstack.org/#/c/555934/ 15:09:11 anything we should do from our side? 15:12:16 I will chat to him later about this. 15:12:22 looking 15:12:39 I just added pycadf and oslo.cache reviews that we should track and get moving. 15:12:45 members of the vmt still need to officially vote in favor of it 15:13:00 i was meaning to ask whether we can get the security analysis change approved 15:13:13 fungi: that should be done now 15:13:19 fungi: so an IRC vote? 15:13:24 yeah 15:13:40 ok 15:13:50 i brought 555934 to the attention of TristanC and kmalloc last week 15:14:08 fungi: sounds good. let's monitor and we can track it here each meeting. 15:14:14 i think we're in favor but i was hoping to see the analysis change merge first (which looks like it's on its way to doing now) 15:14:27 fungi: makes sense 15:14:43 ++ 15:14:56 and then approval by the tc is mostly a formality once the vmt gives it a thumbs-up 15:15:14 Yeah, 555934 looks good, but analysis merge before would be perfect. 15:15:55 so that's merged now: https://review.openstack.org/#/c/447139/ 15:16:17 I'll take a look at the other analysis docs too and make sure they're refined 15:16:23 so will leave it up to you kmalloc and fungi to vote and put to the tc 15:16:28 for pycadf & others 15:16:34 gagehugo: +1 15:16:36 me too. 15:17:33 ttx: anything on spectre / meltdown mitigation , nova conversation..I have not had a chance to look at this, just been following what's happening upstream in the kernel 15:17:56 nope kashyap promised a blog post 15:18:12 ttx: k, lets see what that brings up 15:18:24 #topic Policy Security Roadmap 15:19:00 I don't think there is anything new here, there were some AP's from the PTG. I will look at those again and see if anyone has done anything yet (I don't believe they have) 15:19:07 yeah 15:19:11 ping eeiden 15:19:32 think she is away atm 15:19:39 no worries. 15:19:42 #topic bandit 15:19:44 I'll ask about lcoo when I see here again 15:19:48 her* 15:19:49 thx gagehugo 15:20:07 so I have not heard anything more on the migration to PyTools 15:20:21 ok 15:20:22 and I can see ebrown is working on a new plugin 15:20:38 https://review.openstack.org/#/c/552720/ 15:21:20 one you could look at here gagehugo : https://review.openstack.org/#/c/558959/ 15:21:33 yeah I'll pull that down and verify 15:21:40 cool 15:21:45 but it looks ok to me 15:21:50 #topic OSSN 15:22:03 so I think we have someone new working on authoring a note 15:22:11 I replied to the email today gagehugo , thanks for that. 15:22:28 #topic General Discussion 15:22:33 np 15:23:14 Only other items I have is I updated the wiki / lp pages to show myself and gagehugo as chairs of the SIG, so thanks gagehugo for agreeing to help chop the wood and carry the water with me as a co-chair 15:23:33 https://wiki.openstack.org/wiki/Security-SIG 15:23:56 and; https://launchpad.net/~openstack-ossg 15:24:08 woo 15:24:09 anyone else have any other business or points before we close for this week? 15:25:10 nothing from me 15:25:18 I'm good for now 15:25:30 k, sounds good! 15:26:17 see you all next week..I will be on holiday, but still plan to make it. But if I don't turn up (rare chance) as I am late getting back with the family, please hash startmeeting for me! 15:26:29 thanks all! 15:26:34 #endmeeting