TSC Meeting Zoom link
Meeting Recording
Meeting Chat File
Attendees & Representation. Please add your name to the attendance table below.
Attendees | |
Name | Company |
| Daniel Havey | Microsoft |
| VM (Vicky) Brasseur | Wipro |
| Kiran | Wipro |
| Ruchi | Wipro |
| Lovekush | Wipro |
| Satya Pradhan | Walmart |
| Santhosh Fernandes | Walmart |
| Ayushri | Wipro |
| Jason Niesz | Walmart |
| Walmart | |
| Balachandra Kamat | Wipro |
| Microsoft | |
| Dhivya R | Walmart |
| Mike Dvorkin | |
| Eric Tice | Wipro |
| Dave Thaler | Microsoft |
| Meni Hillel | Walmart |
LF Staff: LJ Illuzzi
Agenda
Meeting note taker
Welcome to new attendees
LFN Induction -
Final slide review: https://docs.google.com/presentation/d/1KS8DIUA2HeCctezA4WrbHfN7IyWkBpvA/edit?usp=sharing&ouid=115348460061026676315&rtpof=true&sd=true
- TAC review comments: https://wiki.lfnetworking.org/x/E5QZB
- March 9 TAC meeting Logistics:
- https://zoom.us/j/560486345?pwd=QXNHRVgyMEtURFVjMDhUUGZ4ZVhFQT09
- 10am EST / 7am PST / 8:30pm IST / 1500 UTC
General Topics
Use Cases
Roadmap
Project structure
Governance
- Followup from 02/16 TSC
- Draft CONTRIBUTING and PROCEDURES file
Technical Steering Committee
- LFN Badging Program
- L3AFD Secure web API discussion - Updates https://github.com/l3af-project/l3af-arch/pull/20
- L3AFD on windows PR https://github.com/l3af-project/l3afd/pull/13
- Dev setup timeouts with sshkeys PR https://github.com/l3af-project/l3af-arch/pull/12
Minutes/Updates
- Karan sends regrets (family obligation)
- Bring L3AF under the LF umbrella
- Tech advisory council
- Reached a point with L3AF - have governance, good tech feel for what we are doing
- Ready for LFN induction
- Final review of slides
- Welcome to attend call for tech induction next week (see above for details)
- Slide review:
- Any last minute inputs?
- This is to get us in as a sandbox project.
- Next phase is incubation (about 1 year)
- Adoption will help a lot
- Logistics for TAC review meeting (see above) Mar 9th
- Vote happens in real time after presentation
- Santhosh: Secure API
- Create and manage cert for L3afd API
- Jason: Use case of why we want to do this
- Lower latency of control signals going to L3AFd instances
- Santhosh: Accessing L3AFd APIs from pubilc network
- L3AFd will only monitor expiration of certs
- log messages when the cert has expired every 30 days
- L3AFd will not auto replace the certs, just generate warnings
- user must get a new cert
- expose some metrics
- cert expiration status, etc
- Token based auth
- Client user name/pass to get auth token
- Auth token used for API requests
- L3AFd will only monitor expiration of certs
- Please review and submit comments
- Jason: Merge sometime next week and start working on code?
- Santhosh: Production will need enterprise certs
- In private by default running on localhost
- Bala: RBAC based access
- Santhosh: yes, admins will have privs to change config, users will have view privileges only.
- Jason: Agree.
- Vicky: Add as a comment to the PR please.
- Bala
- L3AFd on Windows PR open for 2 months
- Can someone test this and bring up the results so we can merge
- Jason: This is critical for Windows. Breaking Linux specific sys calls
- Key timeouts in Windows
- Can merge with Dave's approval
- Windows PR
- Santhosh: Don't have setup on Windows to test this.
- Dave: Tested that it builds, but don't have an XDP root program for testing
- What are the licenses on XDP root for Windows?
- Should I write my own or can I use the existing ones?
- Preference would be to merge it
- This is not the end of PRs on Windows
- Does not break Linux
- Changes mostly on compiler side
- Jason: Linux side - good to merger
- Windows side - could be bugs, but Windows is in dev so we will fix bugs as they show up.
- Dave: Ran the GitHub tests on Windows
- Checkout, Build, Go test.
- Update file to say that it runs on Windows 2019
- This is a minimal test.
- Santhosh: Going to add some of the Go stuff
- Dave: Go ahead and merge and add other stuff on other PRs?
- Jason: Yes, better to have separate PRs.
- What are the licenses on XDP root for Windows?
- Santhosh: Check licenses
- Dave: XDP root - GPL licensed, can we change it to dual with MIT?
- Should we have a different directiory with the same code that has an MIT or apache license?
- Santhosh: No, I will dual license this code.
- Dave: Same for any of the programs, TC, etc.
- Dave: Okay to merge 13 as is.
- Next step is CI/CD and dual license
- Then we can have additional testing using XDP root
- libbpf version is old
- Dave: not a blocker. That API is supported on Windows.
- Dave: XDP root - GPL licensed, can we change it to dual with MIT?
- Ayshri: Are there recordings of a session discussing overall arch and code? For our understanding.
- Santhosh: leAF.io has some trainings
- To set up dev environment: L3AF - trying out L3AFd
- Vicky: Every meeting recorded with notes publicly available
- Santhosh: leAF.io has some trainings
- Dev setup timeout issue:
- repos were private with ssh keys
- Now they are public and it works without keys
- Please verify and approve so we can merge
- Dave: This problem dated from before repos went public
- repos were private with ssh keys
- Dave: Cloud native eBPF day requests for speaking submitted?
- Santhosh: yes, 2 were submitted.
- Dave: 50% more submissions than last year