17:00:39 <hyakuhei> #startmeeting security
17:00:39 <openstack> Meeting started Thu Mar 23 17:00:39 2017 UTC and is due to finish in 60 minutes.  The chair is hyakuhei. Information about MeetBot at http://wiki.debian.org/MeetBot.
17:00:40 <openstack> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.
17:00:42 <hyakuhei> o/
17:00:43 <openstack> The meeting name has been set to 'security'
17:00:45 <lhinds> o/
17:00:47 <vds> o/
17:00:49 <vinaypotluri> o/
17:01:07 <knangia> o/
17:01:27 <hyakuhei> How's everyone doing today?
17:01:31 <unrahul> o/
17:01:37 <knangia> doing well
17:01:39 <unrahul> One more day to Friday
17:01:45 <unrahul> what abt you hyakuhei ?
17:01:47 <knangia> how are you doing hyakuhei
17:01:50 <lhinds> spring cold :(
17:01:50 <hyakuhei> tkelsey is on holiday so he won't be hrere
17:02:05 <knangia> oops :(
17:02:11 <hyakuhei> Heh, better this week. There's a massive IBM conference so everyone is distracted and my todo list is finally getting shorter :)
17:02:48 <vinaypotluri> great
17:03:27 <unrahul> :)
17:03:37 <knangia> nice :)
17:04:05 <hyakuhei> Sweet
17:04:08 <hyakuhei> welcome mdong
17:04:15 <hyakuhei> ok, first up is syntribos :)
17:04:18 <hyakuhei> #topic Syntribos
17:04:43 <unrahul> yup
17:04:48 <sigmavirus> o/
17:04:49 * sigmavirus sneaks into the back
17:04:56 <unrahul> so we are running the tests against Cinder
17:05:15 <mdong> o/
17:05:19 <unrahul> Got a few 500 errors, also looking into old SSNs and CVEs to see if any of the issues have regressed
17:05:37 <knangia> * OSSNs
17:05:42 <sigmavirus> unrahul: are you blocked on cinder by any chance? (pun intended)
17:05:42 <unrahul> Thats it from us on the testing side
17:05:49 <unrahul> :D
17:05:57 <unrahul> good one sigmavirus
17:06:19 <unrahul> Any particular areas of cinder if you guys want us to look into.. ?
17:06:32 <unrahul> hyakuhei: sigmavirus lhinds ^
17:07:07 <lhinds> nothing comes to mind, unrahul - good job so far
17:07:08 <hyakuhei> I'm not sure. There's so much plumbing there. We know there's issues with many of the backends... I'm no expert though, sigmavirus - what do you think ?
17:07:34 <lhinds> perhaps the volume encryption parts?
17:07:43 <sigmavirus> lhinds: that'd be good
17:07:57 <unrahul> I think by default its handled by LUKS, may be some binary fuzzing?
17:08:06 <lhinds> unrahul: +1
17:08:09 <hyakuhei> +1
17:08:17 <unrahul> thanks all..
17:08:24 <unrahul> thats it from our side for this week
17:08:49 <sigmavirus> unrahul: hyakuhei the driver interactions will be hard to test without hardware
17:09:11 <hyakuhei> How do they get tested atm?
17:09:25 <sigmavirus> hyakuhei: cinder has lots of 3rd party CI
17:09:39 <unrahul> sigmavirus: ..m.. :/  hyeah.. we are limited in those situations..
17:09:55 <sigmavirus> unrahul: right, I was trying to point that out for you =P
17:10:41 <unrahul> yup..we are only testing the default lvm backend that comes with devstack
17:10:44 <sigmavirus> moving on?
17:10:50 <unrahul> +1
17:11:01 <sigmavirus> hyakuhei: ^
17:11:11 <hyakuhei> ty
17:11:22 <hyakuhei> #topic Security Docs
17:11:51 <hyakuhei> asettle has been making some great efforts recently I don't think there's any outstanding reviews
17:11:57 <hyakuhei> Obviously OSIC - we love you :)
17:12:10 <unrahul> hyakuhei:  :P
17:12:12 <knangia> thank you hyakuhei  :)
17:12:26 <hyakuhei> Is there anything that the wider community needs to look at?
17:12:46 <unrahul> Nop, this week we were a lil slow on the docs front
17:12:58 <unrahul> nothing as of now for reviews or feedback
17:13:42 <knangia> but, we have assigned more bugs to ourselves, will be working on those
17:13:51 <hyakuhei> Cool, ok
17:13:56 <hyakuhei> That's epic you guys.
17:14:02 <michaelxin> good job!
17:14:10 <knangia> :D
17:14:16 <vinaypotluri> :)
17:14:38 <hyakuhei> #topic OSSN
17:14:42 <hyakuhei> lhinds ^^
17:15:07 <lhinds> only one open, which I am likely going to 'won't fix':
17:15:10 <lhinds> https://bugs.launchpad.net/ossn/+bug/1673085
17:15:10 <openstack> Launchpad bug 1673085 in OpenStack Security Notes "scheduler hints are unbounded and never deleted" [Undecided,New]
17:15:22 <lhinds> from what I understand, this needs a code change.
17:15:29 <sigmavirus> seems reasonable if that's the case
17:15:45 <lhinds> so I prefer not to send out a note saying you're at risk, and you cannot do anything about it yet :P
17:15:53 <hyakuhei> Hmm, normally if a code change is required, there's an OSSA.
17:16:03 <lhinds> hyakuhei: my thoughts too.
17:16:50 <lhinds> if anyone wants to jump in on the issue comments, please do so.
17:17:09 <hyakuhei> done lhinds
17:17:11 <lhinds> I will it another week for Matt to get back too.
17:17:14 <lhinds> thx hyakuhei
17:17:38 <lhinds> that's it for notes.
17:18:04 <hyakuhei> Cool, I see an keystone trusts note in the queue, is that being processed?
17:18:12 <lhinds> oh rly
17:18:15 <lhinds> let me look.
17:18:35 <lhinds> oh is that embaroged?
17:18:40 <lhinds> I am looking at https://bugs.launchpad.net/ossn
17:19:15 <hyakuhei> One moment
17:19:20 <hyakuhei> Yup that's a super secret one
17:19:31 <hyakuhei> There's nothing wrong with trusts people, go back to your homes, nothing to see here.
17:19:38 <lhinds> I normally see private issues, but only if marked as ossn
17:19:50 <hyakuhei> Yup i see it as OSSN, private
17:20:06 <hyakuhei> I'll ping you a link
17:20:10 <lhinds> hmm, ok, I should see that. Thanks!
17:20:27 <hyakuhei> Cool.
17:20:47 <hyakuhei> #topic Any Other Business
17:20:52 <hyakuhei> Anything to bring up guys?
17:21:51 <hyakuhei> I think we can probably call it here then :)
17:22:48 <hyakuhei> TY ALL
17:22:49 <hyakuhei> #endmeeting