Friday, 2015-01-30

« Thursday, 2015-01-29 Index Saturday, 2015-01-31 »
*** dimtruck is now known as zz_dimtruck00:01
*** kgriffs|afk is now known as kgriffs00:07
*** crc32 has quit IRC00:30
*** david-lyle is now known as david-lyle_afk00:31
*** zz_dimtruck is now known as dimtruck00:37
*** kebray has quit IRC00:41
*** jkf has quit IRC00:48
*** arunkant_work has quit IRC00:50
*** bdpayne has quit IRC00:52
*** elmiko has quit IRC00:55
*** jaosorior has quit IRC01:14
*** ayoung has joined #openstack-barbican01:41
*** ayoung has quit IRC01:46
*** lisaclark1 has joined #openstack-barbican01:49
*** ayoung has joined #openstack-barbican02:01
*** kgriffs is now known as kgriffs|afk02:12
*** dimtruck is now known as zz_dimtruck02:23
*** kgriffs|afk is now known as kgriffs03:16
*** kgriffs is now known as kgriffs|afk03:25
*** bdpayne has joined #openstack-barbican03:28
*** bdpayne has quit IRC03:30
*** kebray has joined #openstack-barbican04:11
*** woodster_ has quit IRC04:13
openstackgerritAde Lee proposed openstack/barbican: Add code to generate a CSR in the stored key case  https://review.openstack.org/15067004:34
*** kebray has quit IRC04:44
*** zz_dimtruck is now known as dimtruck05:07
*** Nirupama has joined #openstack-barbican05:20
*** lisaclark1 has quit IRC05:20
*** woodster_ has joined #openstack-barbican05:32
*** dimtruck is now known as zz_dimtruck05:53
*** jaosorior has joined #openstack-barbican05:56
*** woodster_ has quit IRC07:53
*** chlong has quit IRC08:08
*** ajc_ has joined #openstack-barbican09:18
*** jamielennox is now known as jamielennox|away10:36
*** chlong has joined #openstack-barbican10:43
*** jamielennox|away is now known as jamielennox10:44
*** jamielennox is now known as jamielennox|away10:56
*** ajc_ has quit IRC10:58
*** jaosorior has quit IRC11:06
*** jaosorior has joined #openstack-barbican11:06
*** woodster_ has joined #openstack-barbican12:44
*** darrenmoffat has quit IRC13:46
*** darrenmoffat has joined #openstack-barbican13:46
*** Nirupama has quit IRC13:53
*** openstackstatus has joined #openstack-barbican14:20
*** ChanServ sets mode: +v openstackstatus14:20
-openstackstatus- NOTICE: zuul isn't running jobs since ~10:30 utc, investigation underway14:23
*** ChanServ changes topic to "zuul isn't running jobs since ~10:30 utc, investigation underway"14:23
*** miqui_ has joined #openstack-barbican14:39
*** rellerreller has joined #openstack-barbican14:47
*** kfarr has joined #openstack-barbican15:00
*** kfarr has quit IRC15:01
*** kfarr has joined #openstack-barbican15:02
*** kfarr has quit IRC15:03
*** ametts has joined #openstack-barbican15:04
*** kfarr has joined #openstack-barbican15:04
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Renamed outputted keys from base model  https://review.openstack.org/15166815:25
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Trivial refactors to secret controller  https://review.openstack.org/15167015:27
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Delete comments that are no longer valid  https://review.openstack.org/15167215:29
*** zz_dimtruck is now known as dimtruck15:30
*** paul_glass has joined #openstack-barbican15:31
*** lisaclark1 has joined #openstack-barbican15:33
*** lisaclark1 has quit IRC15:34
*** lisaclark1 has joined #openstack-barbican15:34
openstackgerritNathan Reller proposed openstack/barbican-specs: Content Types  https://review.openstack.org/14507315:38
*** lisaclark1 has quit IRC15:40
*** lisaclark1 has joined #openstack-barbican15:41
openstackgerritThomas Dinkjian proposed openstack/python-barbicanclient: Initial directory changes and files for python-babricanclient functional tests  https://review.openstack.org/15140915:53
openstackgerritMerged openstack/barbican: Handle SystemExit properly in migration script  https://review.openstack.org/15075616:07
*** kebray has joined #openstack-barbican16:10
*** ChanServ changes topic to "Barbican Kilo Mid-Cycle Sprint Feb. 16-18, Austin, TX. https://wiki.openstack.org/wiki/Sprints/BarbicanKiloSprint"16:11
-openstackstatus- NOTICE: zuul is running again and changes have been reenqueud. seehttp://status.openstack.org/zuul/ before rechecking if in doubt16:11
*** lisaclark1 has quit IRC16:14
jaosorioralee: Thanks for the +2 mr. :D16:15
aleejaosorior, yer welcome.  Ditto for you.16:15
aleejaosorior, I got three more out there waiting for a +2 .. nudge, nudge, say no more ..16:16
*** lisaclark1 has joined #openstack-barbican16:17
jaosoriorHahaha I saw. But those me longer to review since I have to do some research about them. Trying my best to get them as fast as possible though16:17
*** SheenaG1 has joined #openstack-barbican16:18
*** kebray has quit IRC16:19
*** david-lyle_afk is now known as david-lyle16:19
*** kebray has joined #openstack-barbican16:20
jaosorior* those take me longer to review16:20
aleejaosorior, understood -- some are a little bigger too16:22
*** crc32 has joined #openstack-barbican16:31
rm_workalee: remember the logic you pasted for checking access to a shared secret yesterday?16:38
rm_workit was like...16:38
rm_workwhat the "if" would look like16:39
rm_workto check all the conditions16:39
rm_workI can't find it in my scrollback16:39
aleerm_work, I'm writing that up now -- let me reformulate it ..16:40
*** kgriffs|afk is now known as kgriffs16:42
rm_workok, I was going to post it in a comment on the change but I am guessing you are just writing up the new changeset so I'll just reference it16:44
aleerm_work, if (can_read_shared and (user_in_whitelist or group_in_whitelist or project_in_whitelist) or ((project==creator_project and not creator_only) or user==creator))16:45
aleeI think this works ..16:45
rm_workI think you're missing a parens16:45
rm_workor something16:45
aleerm_work, if (can_read_shared and (user_in_whitelist or group_in_whitelist or project_in_whitelist)) or ((project==creator_project and not creator_only) or user==creator)16:46
aleeyup16:46
rm_work:P16:46
rm_workyep16:46
rm_worki stole that and put it in my comment with your name on it :)16:47
alee:)16:47
aleerm_work, I'm thinking of breaking it up into two specs16:47
aleejust to make things clearer16:48
rm_workyeah might be best16:49
rm_workthough we'd also like to get this merged ASAP16:49
aleedefintiely -- I'm hope to have a new version out today16:50
alee(for both specs)16:50
woodster_alee, rellerreller, can you guys add commit 'flags' to your blueprint commit messages, per this link?: https://wiki.openstack.org/wiki/GitCommitMessages  (in the 'including external references' section)16:55
woodster_alee, rellerreller, so this is an example: https://review.openstack.org/#/c/125798/16:55
*** lisaclark1 has quit IRC16:55
woodster_alee, rellereller, these flag aid in searching for blueprints, esp. by the doc, api and security working group teams16:56
*** woodster_ has quit IRC16:56
*** woodster_ has joined #openstack-barbican16:56
*** lisaclark1 has joined #openstack-barbican17:00
*** lisaclark1 has quit IRC17:01
*** lisaclark1 has joined #openstack-barbican17:03
*** kebray has quit IRC17:05
*** gyee has joined #openstack-barbican17:11
openstackgerritThomas Dinkjian proposed openstack/python-barbicanclient: Initial directory changes and files for python-babricanclient functional tests  https://review.openstack.org/15140917:18
*** lisaclark1 has quit IRC17:28
openstackgerritThomas Dinkjian proposed openstack/python-barbicanclient: Initial directory changes and files for python-babricanclient functional tests  https://review.openstack.org/15140917:32
*** lisaclark1 has joined #openstack-barbican17:37
*** rellerreller has quit IRC17:40
*** bdpayne has joined #openstack-barbican17:40
*** rellerreller has joined #openstack-barbican17:53
*** crc32 has quit IRC18:02
*** crc32 has joined #openstack-barbican18:08
*** mjg59 has quit IRC18:09
openstackgerritThomas Dinkjian proposed openstack/python-barbicanclient: Initial directory changes and files for python-babricanclient functional tests  https://review.openstack.org/15140918:11
*** mjg59 has joined #openstack-barbican18:13
*** lisaclark1 has quit IRC18:14
*** crc32 has quit IRC18:23
*** lisaclark1 has joined #openstack-barbican18:27
*** dimtruck is now known as zz_dimtruck18:28
openstackgerritNathan Reller proposed openstack/barbican-specs: Content Types  https://review.openstack.org/14507318:40
rellerrellerwoodster_ thank for the link. I updated the content types CR commit message.18:41
-openstackstatus- NOTICE: Gerrit and Zuul will be offline from 1900 to 1930 UTC for project renames18:42
*** lisaclark1 has quit IRC18:50
*** lisaclark1 has joined #openstack-barbican18:50
*** lisaclark1 has quit IRC18:56
*** lisaclark1 has joined #openstack-barbican18:59
*** lisaclark1 has joined #openstack-barbican18:59
*** lisaclark1 has quit IRC19:01
*** SheenaG11 has joined #openstack-barbican19:01
*** SheenaG1 has quit IRC19:03
*** lisaclark1 has joined #openstack-barbican19:04
*** jaosorior has quit IRC19:06
-openstackstatus- NOTICE: Gerrit and Zuul are offline until 1930 UTC for project renames19:06
*** ChanServ changes topic to "Gerrit and Zuul are offline until 1930 UTC for project renames"19:06
*** jkf has joined #openstack-barbican19:09
*** lisaclark1 has quit IRC19:11
*** lisaclark1 has joined #openstack-barbican19:16
chellygelgoing to run and grab lunch! i'll be on google hangouts!19:24
*** ChanServ changes topic to "Barbican Kilo Mid-Cycle Sprint Feb. 16-18, Austin, TX. https://wiki.openstack.org/wiki/Sprints/BarbicanKiloSprint"19:28
-openstackstatus- NOTICE: Gerrit is back online19:29
*** SheenaG11 has quit IRC19:31
rellerrelleralee Can you please review my updated content types spec? I think it is good now. I only changed the commit message since the last review.19:49
aleerellerreller, looking19:49
rellerrelleralee Thanks!19:49
aleerellerreller, done19:52
rellerrelleralee Thanks and have a good weekend.19:55
aleerellerreller, you too -- #gopats !19:55
*** rellerreller has quit IRC19:55
*** openstackgerrit has quit IRC20:06
*** openstackgerrit has joined #openstack-barbican20:07
*** david-lyle has quit IRC20:25
*** crc32 has joined #openstack-barbican20:38
*** SheenaG1 has joined #openstack-barbican20:41
*** zz_dimtruck is now known as dimtruck20:46
*** lisaclark1 has quit IRC20:57
*** lisaclark1 has joined #openstack-barbican21:04
*** kebray has joined #openstack-barbican21:12
openstackgerritThomas Dinkjian proposed openstack/python-barbicanclient: Adds base behaviors, secret behaviors and the secret smoke tests  https://review.openstack.org/15177721:12
openstackgerritThomas Dinkjian proposed openstack/python-barbicanclient: Adds base behaviors, secret behaviors and the secret smoke tests  https://review.openstack.org/15177721:27
*** lisaclark1 has quit IRC21:28
*** chellygelz has joined #openstack-barbican21:33
openstackgerritThomas Dinkjian proposed openstack/python-barbicanclient: Adds base behaviors, secret behaviors and the secret smoke tests  https://review.openstack.org/15177721:37
openstackgerritThomas Dinkjian proposed openstack/python-barbicanclient: All of the containers behaviors and container smoke tests  https://review.openstack.org/15178721:42
*** kebray has quit IRC21:43
*** kebray has joined #openstack-barbican21:44
openstackgerritAde Lee proposed openstack/barbican-specs: Add spec for per-secret policy  https://review.openstack.org/12735322:07
*** miqui_ is now known as miqui_away22:07
aleerm_work, woodster_  ^^22:07
rm_workwoo22:08
aleesome late friday afternoon easy reading22:08
*** crc32 has quit IRC22:09
redrobotalee I would like to get morganfainberg and maybe some other Keystone eyes on that BP22:14
* morganfainberg tries hard to pretend to be not lurking, "is it working? :P"22:15
redrobotmorganfainberg hehe... on a Friday afternoon even... I just want to make sure we're not going off the deep end.  :)22:16
*** morganfainberg is now known as NotLurkingHere22:17
NotLurkingHere>.>22:18
rm_workwow that's a hell of a rewrite alee22:18
rm_work+106/-13122:18
NotLurkingHerephew22:19
NotLurkingHerespec review :( never easy on friday22:19
*** NotLurkingHere is now known as morganfainberg22:19
*** crc32 has joined #openstack-barbican22:20
rm_workalee: I like that you had to specify what "secret creator" is ("the user that created the secrets")22:20
morganfainbergadded some comments/questions into that spec22:35
rm_workabout to submit mine too22:35
*** SheenaG1 has quit IRC22:38
rm_workalee: posted22:42
*** morganfainberg is now known as outforteaorcoffe22:47
rm_workOMFG https://review.openstack.org/#/c/125798/ someone workflow this for the love of all that is holy22:50
rm_workredrobot: ^^22:50
*** kgriffs is now known as kgriffs|afk22:56
woodster_rm_work, no can doo, sorry23:05
rm_workwoodster_: T_T_T_T23:05
woodster_rm_work, clung gave me heck for approving my own CR in the early days of the project, stuck with me ever since :)23:07
rm_workwoodster_: hehe alright, but you can bug redrobot :P23:08
rm_workor someone else23:08
woodster_rm_work this place is clearing out fast after 5pm...23:09
rm_workT_T23:09
woodster_two bps in one CR?? Oh noooo who did that happen?23:10
woodster_how that is23:10
woodster_alee, ^^^23:10
*** dimtruck is now known as zz_dimtruck23:15
*** chellygelz has quit IRC23:15
reaperhulkabout to drop a big CR, sorry :p23:20
woodster_on a Friday > 5pm?? :)23:21
reaperhulkyep23:22
reaperhulkgit diff --stat HEAD~23:22
reaperhulk 2 files changed, 578 insertions(+), 313 deletions(-)23:22
reaperhulk>:(23:22
reaperhulk(I would make that smaller if I possibly could)23:22
reaperhulkbut "wholesale swap the entire way we do things" is not an incremental model23:22
openstackgerritPaul Kehrer proposed openstack/barbican: Completely refactor PKCS11 plugin  https://review.openstack.org/15181723:23
*** kebray has quit IRC23:27
*** kfarr has quit IRC23:30
woodster_rm_work, can you look at my comments on https://review.openstack.org/#/c/127353?23:31
woodster_reaperhulk, well if it works and fixes that nasty issue you were fighting, I'll take it as is :)23:32
reaperhulkwoodster_: it does fix that, but still worth reviewing to the extent possible23:32
reaperhulkjvrbanac has a good idea so I'm going to do that quickly23:33
rm_workwoodster_: it says 3 comments but i can only find one <_<23:33
rm_workoh nm i found the other two23:33
*** ametts has quit IRC23:34
openstackgerritPaul Kehrer proposed openstack/barbican: Completely refactor PKCS11 plugin  https://review.openstack.org/15181723:36
woodster_rm_work, I don't think the private secret thing has to be complicated23:36
*** kebray has joined #openstack-barbican23:36
rm_workI feel like your method is MORE complicated tho <_<23:38
woodster_rm_work really? I'm using the same whitelist mechanism already proposed, just changing the policy equation23:38
rm_workhmm23:40
woodster_rm_work we would just pass in a boolean to the policy engine such as is_whitelist_specified or some such, so we should be able to bypass those other whitelist operations and default to the current policy behavior as needed23:40
rm_workwell, i need to reread maybe23:40
rm_workmy brain is a little shot right now23:40
woodster_frieday?23:41
woodster_reaperhulk, how many of those constants are pkcs11 generic, and how many are vendor specific?23:41
woodster_reaperhulk, maybe only this one :)  VENDOR_SAFENET_CKM_AES_GCM = 0x8000011c23:42
reaperhulkwoodster_: that is the only vendor specific constant, correct23:47
*** paul_glass has quit IRC23:47
rm_workwoodster_: i'll look on Monday. Also, the neutron-lbaas midcycle hackathon/meetup is at RAX all of next week, FYI23:49
rm_workso I'll mostly be doing that23:49
woodster_rm_work, ok that sounds good23:52
woodster_reaperhulk, and you added a TODO to parameterize that later, so +2!23:53
reaperhulkyeah there are some fun challenges around that or else I would have done that as part of this refactor23:53
woodster_reaperhulk, there always are. The TODO-er can cross those bridges I suppose :)23:54
woodster_have a good weekend folks!23:59
« Thursday, 2015-01-29 Index Saturday, 2015-01-31 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!