03-02-2022 TSC Meeting Minutes
- Dhivya R
- Santhosh Fernandes
- Daniel Havey
TSC Meeting Zoom link
Meeting Recording
Meeting Chat File
Attendees & Representation. Please add your name to the attendance table below.
Attendees | |
Name | Company |
@Daniel Havey | Microsoft |
@VM (Vicky) Brasseur | Wipro |
Kiran | Wipro |
Ruchi | Wipro |
Lovekush | Wipro |
@Satya Pradhan | Walmart |
@Santhosh Fernandes | Walmart |
Ayushri | Wipro |
@Jason Niesz | Walmart |
@Ragalahari | Walmart |
@Balachandra Kamat | Wipro |
@Steve | Microsoft |
@Dhivya R | Walmart |
Mike Dvorkin | |
@Eric Tice | Wipro |
@Dave Thaler | Microsoft |
@Meni Hillel | Walmart |
LF Staff: @LJ Illuzzi
Agenda
Meeting note taker
Welcome to new attendees
LFN Induction -
Final slide review: https://docs.google.com/presentation/d/1KS8DIUA2HeCctezA4WrbHfN7IyWkBpvA/edit?usp=sharing&ouid=115348460061026676315&rtpof=true&sd=true
TAC review comments: https://lf-networking.atlassian.net/wiki/x/Bkrv
March 9 TAC meeting Logistics:
https://zoom.us/j/560486345?pwd=QXNHRVgyMEtURFVjMDhUUGZ4ZVhFQT09
10am EST / 7am PST / 8:30pm IST / 1500 UTC
General Topics
Use Cases
Roadmap
Project structure
Governance
Followup from 02/16 TSC
Draft CONTRIBUTING and PROCEDURES file
Technical Steering Committee
LFN Badging Program
L3AFD Secure web API discussion - Updates https://github.com/l3af-project/l3af-arch/pull/20
L3AFD on windows PR https://github.com/l3af-project/l3afd/pull/13
Dev setup timeouts with sshkeys PR https://github.com/l3af-project/l3af-arch/pull/12
Minutes/Updates
Karan sends regrets (family obligation)
Bring L3AF under the LF umbrella
Tech advisory council
Reached a point with L3AF - have governance, good tech feel for what we are doing
Ready for LFN induction
Final review of slides
Welcome to attend call for tech induction next week (see above for details)
Slide review:
Any last minute inputs?
This is to get us in as a sandbox project.
Next phase is incubation (about 1 year)
Adoption will help a lot
Logistics for TAC review meeting (see above) Mar 9th
Vote happens in real time after presentation
Santhosh: Secure API
Create and manage cert for L3afd API
Jason: Use case of why we want to do this
Lower latency of control signals going to L3AFd instances
Santhosh: Accessing L3AFd APIs from pubilc network
L3AFd will only monitor expiration of certs
log messages when the cert has expired every 30 days
L3AFd will not auto replace the certs, just generate warnings
user must get a new cert
expose some metrics
cert expiration status, etc
Token based auth
Client user name/pass to get auth token
Auth token used for API requests
Please review and submit comments
Jason: Merge sometime next week and start working on code?
Santhosh: Production will need enterprise certs
In private by default running on localhost
Bala: RBAC based access
Santhosh: yes, admins will have privs to change config, users will have view privileges only.
Jason: Agree.
Vicky: Add as a comment to the PR please.
Bala
L3AFd on Windows PR open for 2 months
Can someone test this and bring up the results so we can merge
Jason: This is critical for Windows. Breaking Linux specific sys calls
Key timeouts in Windows
Can merge with Dave's approval
Windows PR
Santhosh: Don't have setup on Windows to test this.
Dave: Tested that it builds, but don't have an XDP root program for testing
What are the licenses on XDP root for Windows?
Should I write my own or can I use the existing ones?
Preference would be to merge it
This is not the end of PRs on Windows
Does not break Linux
Changes mostly on compiler side
Jason: Linux side - good to merger
Windows side - could be bugs, but Windows is in dev so we will fix bugs as they show up.
Dave: Ran the GitHub tests on Windows
Checkout, Build, Go test.
Update file to say that it runs on Windows 2019
This is a minimal test.
Santhosh: Going to add some of the Go stuff
Dave: Go ahead and merge and add other stuff on other PRs?
Jason: Yes, better to have separate PRs.
Santhosh: Check licenses
Dave: XDP root - GPL licensed, can we change it to dual with MIT?
Should we have a different directiory with the same code that has an MIT or apache license?
Santhosh: No, I will dual license this code.
Dave: Same for any of the programs, TC, etc.
Dave: Okay to merge 13 as is.
Next step is CI/CD and dual license
Then we can have additional testing using XDP root
libbpf version is old
Dave: not a blocker. That API is supported on Windows.
Ayshri: Are there recordings of a session discussing overall arch and code? For our understanding.
Santhosh: leAF.io has some trainings
To set up dev environment: L3AF - trying out L3AFd
Vicky: Every meeting recorded with notes publicly available
Dev setup timeout issue:
repos were private with ssh keys
Now they are public and it works without keys
Please verify and approve so we can merge
Dave: This problem dated from before repos went public
Dave: Cloud native eBPF day requests for speaking submitted?
Santhosh: yes, 2 were submitted.
Dave: 50% more submissions than last year