Tuesday, 2015-02-17

*** jaosorior has quit IRC00:51
*** kgriffs is now known as kgriffs|afk01:03
*** woodster_ has quit IRC01:10
openstackgerritLouis Taylor proposed openstack/barbican: Configure colored logging in devstack  https://review.openstack.org/15642701:10
*** jamielennox is now known as jamielennox|away01:16
*** jamielennox|away is now known as jamielennox01:31
*** jamielennox is now known as jamielennox|away01:41
*** bdpayne has quit IRC01:49
*** woodster_ has joined #openstack-barbican02:03
*** jamielennox|away is now known as jamielennox02:09
*** alee has joined #openstack-barbican02:20
*** alee has quit IRC02:57
*** zz_dimtruck is now known as dimtruck03:03
*** alee has joined #openstack-barbican03:12
*** xaeth_afk is now known as xaeth03:53
*** alee has quit IRC04:46
*** kebray_ has joined #openstack-barbican04:53
*** kebray has quit IRC04:57
*** alee has joined #openstack-barbican05:07
*** dimtruck is now known as zz_dimtruck05:29
openstackgerritOpenStack Proposal Bot proposed openstack/barbican: Imported Translations from Transifex  https://review.openstack.org/15647906:12
*** alee has quit IRC06:54
*** alee has joined #openstack-barbican07:01
*** alee has quit IRC07:09
*** alee has joined #openstack-barbican07:37
*** rm_you has quit IRC07:52
*** rm_work is now known as rm_work|away07:57
*** rm_you has joined #openstack-barbican08:09
*** chlong has quit IRC08:11
*** rm_you| has joined #openstack-barbican08:13
*** rm_you has quit IRC08:16
*** kebray_ has quit IRC11:35
openstackgerritNathan Reller proposed openstack/barbican: Added secret_type to Secret model  https://review.openstack.org/15638511:57
openstackgerritNathan Reller proposed openstack/barbican: Added secret_type to Secret model  https://review.openstack.org/15638512:22
*** xaeth is now known as xaeth_afk12:55
*** SheenaG1 has joined #openstack-barbican14:43
*** igueths has joined #openstack-barbican14:47
*** kgriffs|afk is now known as kgriffs14:52
*** SheenaG1 has quit IRC14:52
*** SheenaG1 has joined #openstack-barbican14:56
*** jaosorior has joined #openstack-barbican15:00
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Refactor _lookup for orders controller  https://review.openstack.org/15640315:04
*** lisaclark1 has joined #openstack-barbican15:08
*** dave-mccowan has joined #openstack-barbican15:09
*** rellerreller has joined #openstack-barbican15:11
*** alee has quit IRC15:13
*** stanzi has joined #openstack-barbican15:14
openstackgerritDouglas Mendizábal proposed openstack/python-barbicanclient: Add hooks for devstack testing  https://review.openstack.org/15591715:17
*** darrenmoffat has quit IRC15:17
*** paul_glass has joined #openstack-barbican15:17
*** darrenmoffat has joined #openstack-barbican15:18
*** rm_work|away is now known as rm_work15:18
*** tsv has joined #openstack-barbican15:28
jaosoriorhockeynut: mind giving this a read? https://review.openstack.org/#/c/132091/ would be nice to get that merged today :D15:29
hockeynutsure!15:29
hockeynutI think I had a dream about quotas last night :-)15:30
jaosoriorlol15:31
openstackgerritAdam Harwell proposed openstack/castellan: Officially add Certificate Management to scope  https://review.openstack.org/15662315:31
rm_work^^ :)15:31
reaperhulkhaha, nice rm_work15:31
SheenaG1rm_work: did everyone agree that cert management should be part of it?  It felt like that conversation didn't finish15:32
rm_workSheenaG1: that's what this is for15:32
rm_workSheenaG1: either the CR will land, or it won't :)15:33
jaosoriorrm_work, SheenaG1: At least I was sold the idea that it makes sense15:33
SheenaG1rm_work: ah, to keep the conversation open15:33
rm_workI don't even know how these files got in here to begin with, I would have commented on any review not including Certs to begin with -- I don't think it went through Gerrit15:33
rm_workyeah..... pfff redrobot, https://github.com/openstack/castellan/commit/93eb3a9f16bcbbc93866a44e8a58b160420e6b5c no changeID15:34
openstackgerritMerged openstack/barbican-specs: Add Quota support for Barbican resources  https://review.openstack.org/13209115:35
jaosoriortsv: ^^15:35
*** zz_dimtruck is now known as dimtruck15:36
jvrbanacrellerreller, tossed a couple comments on your CR15:36
*** alee has joined #openstack-barbican15:37
jaosoriorjvrbanac: I responded to those comments15:38
hockeynutquotas have merged - dance and sing!15:38
*** jkf has joined #openstack-barbican15:39
jvrbanacjaosorior, rellerreller, ahh ok... ignore my comments lol15:40
openstackgerritMerged openstack/barbican: Imported Translations from Transifex  https://review.openstack.org/15647915:40
openstackgerritDave McCowan proposed openstack/barbican: Add subject_dn validator  https://review.openstack.org/15564015:40
iguethsLol hockeynut15:41
tsvjaosorior, thanks!15:41
*** kfarr has joined #openstack-barbican15:43
*** alee has quit IRC15:46
openstackgerritAde Lee proposed openstack/barbican: Added new repository classes and controller classes for CAs  https://review.openstack.org/14798115:47
openstackgerritAde Lee proposed openstack/barbican: Added mixin class to allow soft deletes  https://review.openstack.org/15662915:47
*** fern has joined #openstack-barbican15:47
openstackgerritMerged openstack/python-barbicanclient: Fix serialization of datetime objects  https://review.openstack.org/15633615:47
*** kebray has joined #openstack-barbican15:54
hockeynutredrobot what does this python SDK mean for Castellan?15:57
*** kebray has quit IRC15:57
rm_workhockeynut: i was just thinking that15:58
rm_workhockeynut: want to ask him in a sec "so how do you feel about having <all of what I want Castellan to do> in SDK? :P15:58
jaosoriorhockeynut: That's what I was wondering.15:58
rm_workI doubt he'll want it, lol15:58
*** xaeth_afk is now known as xaeth15:59
jaosoriorrm_work, hockeynut: I guess it would depend on what the aim of SDK is. If they only intent do be an SDK, meaning, oniy an interface to what the concepts of the project, and the calls to the REST API, like the python-*client's are,; then probably they won't dig Castellan15:59
rm_workyeah15:59
rm_workI doubt they want to have vendor-plugin type stuff in their repo :P lol16:00
hockeynutyep - its more of a least-common denom approach16:00
hockeynutso does Castellan sit on top of sdk perhaps?  or go right to barbican?16:00
*** fern has quit IRC16:01
jaosoriorrm_work, hockeynut: I'm guessing Castellan would still exist, and would then use SDK as a "backend" or implementation, in the same way it will use python-barbicanclient in the current path16:02
rm_workyep16:02
rm_workI think so16:02
hockeynutjaosorior sounds that way16:02
*** alee has joined #openstack-barbican16:05
openstackgerritMerged openstack/barbican: Configure colored logging in devstack  https://review.openstack.org/15642716:06
kragnizfirst barbican patch merged!16:06
kragniz\o/16:06
hockeynutcongrats kragniz !16:07
jaosoriorkragniz: Congrats!16:07
hockeynut(I should have put that in different colors!)16:07
kragnizheh16:07
rm_workwoot16:11
*** stanzi has quit IRC16:13
*** stanzi has joined #openstack-barbican16:14
rm_workalee: I am thinking it wouldn't hurt to get all of this done IN the Castellan repo for the time being, until the SDK stuff is more "ready" for Barbican and has time to figure out how they want to handle stuff like Castellan being in their repo -- at which point we could then take all of the working stuff from Castellan that we've iterated on, and put it in their repo16:15
rm_workif that makes sense16:15
SheenaG1congrats kragniz (a littleslwow)16:16
briancurtinfrom what i understand of it, that sounds like a good way to go. Castellan by itself how you'd do it today, then Castellan backed by SDK, then if it makes sense, castellan offered by the SDK16:17
*** kebray has joined #openstack-barbican16:17
jaosoriorAnybody has time to review these two CRs? https://review.openstack.org/#/c/156403/  https://review.openstack.org/#/c/156325/  they should be pretty straight forward16:18
jvrbanacjaosorior, but you're not biased at all :-P16:18
rm_workbriancurtin: cool16:18
*** stanzi has quit IRC16:18
jaosoriorjvrbanac: it's called marketing ;)16:19
jaosoriorwoodster_: ping16:23
woodster_jaosorior, hello16:24
jaosorioris there a reason why there is no "get_project" call? I'm looking at the repo singleton stuff16:25
jaosoriorwoodster_: ^^16:26
woodster_jaosorior: https://github.com/openstack/barbican/blob/master/barbican/plugin/crypto/manager.py#L10716:32
woodster_jaosorior, so that really should be added to those existing factory/singleton repository calls16:33
jaosoriorwoodster_: Where is that stuff documented? Would like to understand it better before coding it in16:34
*** lisaclark1 has quit IRC16:35
jaosoriorwoodster_: Found the documentation16:37
woodster_jaosorior, oh sorry Ozz, ok cool. That is all we are using oslo concurrency for right now16:38
*** lisaclark1 has joined #openstack-barbican16:43
*** stanzi has joined #openstack-barbican16:45
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Add concurrency decorator to repo factory functions  https://review.openstack.org/15665616:47
jaosoriorwoodster_: That was pretty straight forward ^^16:49
*** lisaclark1 has quit IRC16:51
*** lisaclark1 has joined #openstack-barbican16:55
hockeynutjaosorior why did you add that concurrency decorator?  Was it a timing bug somewhere?16:58
*** stanzi has quit IRC17:04
openstackgerritDave McCowan proposed openstack/barbican: Add subject_dn validator  https://review.openstack.org/15564017:07
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Add concurrency decorator to repo factory functions  https://review.openstack.org/15665617:12
*** stanzi has joined #openstack-barbican17:15
openstackgerritChelsea Winfree proposed openstack/barbican: Changing basic copyright for a section of functional tests  https://review.openstack.org/15666817:17
*** stanzi has quit IRC17:18
*** stanzi has joined #openstack-barbican17:19
*** stanzi has quit IRC17:23
lisaclark1chellygel, jvrbanac: ping17:28
lisaclark1if i want to push a commit to gerrit, what's the gerrit endpoint to point my git to?17:28
jvrbanaclisaclark, git review -s17:29
jvrbanaclisaclark1, ^17:29
*** bdpayne has joined #openstack-barbican17:30
*** tkelsey has joined #openstack-barbican17:31
*** kebray has quit IRC17:33
*** kebray has joined #openstack-barbican17:33
*** miqui has quit IRC17:37
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Add missing repository factory functions  https://review.openstack.org/15668017:48
chellygelplz just need a workflow : https://review.openstack.org/#/c/156668/17:50
jaosoriorlets see17:50
jaosoriorchellygel: done17:50
chellygelthanks jaosorior -- udabes17:50
jvrbanacjaosorior, questions about your CR17:51
jaosoriorwhich17:52
jvrbanacjaosorior, https://review.openstack.org/#/c/156403/3/barbican/api/controllers/orders.py L11117:52
jvrbanacjaosorior, Is removing the try/catch appropriate here?17:52
*** gyee has joined #openstack-barbican17:52
jaosoriorwell, that function now won't even be called if there is no such secret. Which is what the try-except was for17:53
jvrbanacjaosorior, but the exception is for if the Order isn't found17:54
jvrbanacjaosorior, atleast that's how it reads17:54
jaosoriorI don't know why I wrote secret17:54
jaosorioryes, so, if the order is not found it used to catch it there17:55
jaosoriorbut now, with that approach that I introduced, if the order is non-existent, then an 404 is thrown already, thus, not even creating that controller, so the delete_order wouldn't be called in the first place17:56
jvrbanacjaosorior, interesting... ok17:56
jaosoriorwhich is what happens in L13617:57
*** lisaclark2 has joined #openstack-barbican18:00
*** lisaclark1 has quit IRC18:00
jvrbanacreaperhulk, https://github.com/stackforge/bandit/blob/master/bandit.yaml18:08
reaperhulkjvrbanac: yeah I dropped that in as a test18:08
reaperhulkWe get 10 notifications18:08
openstackgerritMerged openstack/barbican: Changing basic copyright for a section of functional tests  https://review.openstack.org/15666818:15
openstackgerritMerged openstack/barbican: Refactor _lookup for secrets  https://review.openstack.org/15632518:15
hockeynuta quick first swag at running bandit...results here: https://gist.github.com/sheyman/6cdedb51276dab77f34818:18
openstackgerritDave McCowan proposed openstack/barbican: Add subject_dn validator  https://review.openstack.org/15564018:20
openstackgerritSheena Gregson proposed openstack/barbican: Updated copyright dates for functional tests/models  https://review.openstack.org/15670218:32
*** hyakuhei has joined #openstack-barbican18:36
hyakuheiHey Mid-Cycle type peoples :)18:36
jaosoriorhyakuhei: yo18:40
rm_workheyo18:42
redrobothi hyakuhei !18:45
*** hyakuhei has quit IRC18:49
woodster_hyakuhei, hello18:49
rm_workwow, lol: https://lists.freebsd.org/pipermail/freebsd-current/2015-February/054580.html18:55
*** hyakuhei has joined #openstack-barbican18:58
openstackgerritLisa Clark proposed openstack/barbican: Updating copyright on barbican/api files  https://review.openstack.org/15670819:00
redrobotrm_work awesome19:04
rm_workwoodster_: had a nitpick on https://review.openstack.org/#/c/155931/ with consistency of terminology19:05
rm_workTLS/SSL19:05
*** hyakuhei has quit IRC19:09
kfarralee alembic migrations: https://github.com/cloudkeep/barbican/wiki/Database-Migrations#automatically19:10
*** lisaclark2 has quit IRC19:11
*** hyakuhei has joined #openstack-barbican19:13
*** xaeth is now known as xaeth_afk19:14
*** lisaclark1 has joined #openstack-barbican19:19
*** openstackgerrit has quit IRC19:20
*** openstackgerrit has joined #openstack-barbican19:20
jaosoriorThis one only needs a workflow :D https://review.openstack.org/#/c/156656/19:21
openstackgerritMerged openstack/barbican: Refactor _lookup for orders controller  https://review.openstack.org/15640319:28
openstackgerritMerged openstack/barbican: Updated copyright dates for functional tests/models  https://review.openstack.org/15670219:31
SheenaG1Got two that just need a workflow19:34
SheenaG1hockeynut, jvrbanac, woodster_19:34
SheenaG1https://review.openstack.org/#/c/156629/19:34
SheenaG1https://review.openstack.org/#/c/156656/19:34
SheenaG1https://review.openstack.org/#/c/155917/19:35
SheenaG1That last one has like four +2's19:35
SheenaG1But no workflow?  :-(19:36
jaosoriorworkflowed19:37
openstackgerritMerged openstack/barbican: Updating copyright on barbican/api files  https://review.openstack.org/15670819:38
hockeynutI have a comment on the first one (https://review.openstack.org/#/c/156629/)19:41
SheenaG1alee: hockeynut's comment is on your CR19:46
*** paul_glass has quit IRC20:02
*** rellerreller has quit IRC20:05
*** lisaclark1 has quit IRC20:07
*** chadlung has joined #openstack-barbican20:11
openstackgerritMerged openstack/python-barbicanclient: Add hooks for devstack testing  https://review.openstack.org/15591720:11
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Add missing repository factory functions  https://review.openstack.org/15668020:13
jaosoriorreaperhulk, woodster_: Abandoned the commit related to lockutils.20:14
reaperhulkcool20:14
*** chadlung has quit IRC20:17
*** chadlung has joined #openstack-barbican20:17
*** lisaclark1 has joined #openstack-barbican20:34
*** kebray has quit IRC20:43
*** hyakuhei has quit IRC20:47
*** lisaclark1 has quit IRC20:49
*** kfarr has quit IRC20:52
*** hyakuhei has joined #openstack-barbican20:54
*** lisaclark1 has joined #openstack-barbican20:55
SheenaG1For review, everyone21:01
SheenaG1Added mixin class to allow soft deletes (Ade) https://review.openstack.org/#/c/156629/Add missing repository factory functions (Oz) https://review.openstack.org/#/c/156680/Add subject_dn validator (Dave) https://review.openstack.org/#/c/155640/Add secret_type to secret model (Nate) https://review.openstack.org/#/c/156385/21:01
SheenaG1Eesh21:02
SheenaG1That didn't come across right21:02
SheenaG1Added mixin class to allow soft deletes (Ade) https://review.openstack.org/#/c/156629/   Add missing repository factory functions (Oz) https://review.openstack.org/#/c/156680/   Add subject_dn validator (Dave) https://review.openstack.org/#/c/155640/   Add secret_type to secret model (Nate) https://review.openstack.org/#/c/156385/21:02
SheenaG1Round 221:02
*** xaeth_afk is now known as xaeth21:06
*** stanzi has joined #openstack-barbican21:08
jvrbanacjaosorior, regarding the factory function, is this in relation to the refactor to get rid of passing around repos?21:10
jvrbanacjaosorior, ignore me21:11
jvrbanacjaosorior, I completely missed your commit msg...21:11
* jvrbanac is dumb21:11
SheenaG1But we like him anyway21:13
rm_workhey redrobot: http://en.wikipedia.org/wiki/PKCS_1221:25
*** stanzi has quit IRC21:25
rm_work^^ jvrbanac21:26
*** stanzi has joined #openstack-barbican21:26
rm_workstandard?21:26
rm_workreaperhulk: what do you think of PKCS12 as the standard for what I am trying to do? :P21:28
reaperhulkPKCS12 is commonly used for pairing certificates and private keys21:28
reaperhulkIt is opaque to barbican21:28
rm_workright21:28
rm_workbut it's essentially what I'm trying to model21:28
rm_workand people wanted a standard...21:28
rm_workalso a great example of how an implementation would work with a system that didn't store metadata linking different secrets -- it's stored as one object21:29
reaperhulkyou'd have to talk to the others; I am staying out of this one outside of pure cryptographic things ;)21:29
rm_worklol21:29
*** stanzi has quit IRC21:30
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Enforce UUID for secret and order IDs  https://review.openstack.org/15678321:32
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Enforce secert and order IDs are valid UUIDs  https://review.openstack.org/15678321:34
rm_workjvrbanac: you there?21:35
*** stanzi has joined #openstack-barbican21:35
rm_workjvrbanac: if we call it a PKCS12 object, does that address your concerns about having a standard? :)21:36
*** igueths has quit IRC21:37
*** lisaclark1 has quit IRC21:38
*** SheenaG1 has quit IRC21:38
*** jkf has quit IRC21:41
*** tsv has quit IRC21:44
*** rm_work is now known as rm_work|away21:44
*** alee has quit IRC21:44
openstackgerritNathan Reller proposed openstack/barbican: Added secret_type to Secret model  https://review.openstack.org/15638521:46
*** dave-mccowan has quit IRC21:47
*** xaeth is now known as xaeth_afk21:52
*** stanzi has quit IRC21:55
*** gyee has quit IRC21:55
*** stanzi has joined #openstack-barbican21:56
*** stanzi has quit IRC21:59
*** stanzi has joined #openstack-barbican22:00
*** stanzi has quit IRC22:04
*** stanzi has joined #openstack-barbican22:07
*** crc32 has joined #openstack-barbican22:12
*** crc32 has quit IRC22:18
*** xaeth_afk is now known as xaeth22:19
*** stanzi has quit IRC22:21
*** stanzi has joined #openstack-barbican22:22
*** stanzi has quit IRC22:26
*** crc32 has joined #openstack-barbican22:31
*** stanzi has joined #openstack-barbican22:33
*** gyee has joined #openstack-barbican22:49
*** kebray has joined #openstack-barbican22:56
*** chlong has joined #openstack-barbican23:08
*** stanzi has quit IRC23:10
*** stanzi has joined #openstack-barbican23:10
*** xaeth is now known as xaeth_afk23:13
*** stanzi has quit IRC23:15
*** dimtruck is now known as zz_dimtruck23:32
*** tkelsey has quit IRC23:33
*** chadlung has quit IRC23:45
*** chadlung has joined #openstack-barbican23:48
*** chadlung_ has joined #openstack-barbican23:52
*** chadlung has quit IRC23:56
*** chadlung_ has quit IRC23:58

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!