| *** whoami-rajat has joined #openstack-barbican | 02:37 | |
| *** strigazi has quit IRC | 06:42 | |
| *** strigazi has joined #openstack-barbican | 06:43 | |
| *** Luzi has joined #openstack-barbican | 06:56 | |
| *** moguimar has joined #openstack-barbican | 07:12 | |
| *** pcaruana has joined #openstack-barbican | 08:51 | |
| *** moguimar has quit IRC | 08:52 | |
| *** moguimar has joined #openstack-barbican | 08:55 | |
| *** pcaruana has quit IRC | 12:40 | |
| *** pcaruana has joined #openstack-barbican | 12:50 | |
| *** abishop has joined #openstack-barbican | 12:51 | |
| *** abishop has quit IRC | 12:52 | |
| *** abishop has joined #openstack-barbican | 12:53 | |
| redrobot | #startmeeting barbican | 13:00 |
|---|---|---|
| openstack | Meeting started Tue Jan 29 13:00:41 2019 UTC and is due to finish in 60 minutes. The chair is redrobot. Information about MeetBot at http://wiki.debian.org/MeetBot. | 13:00 |
| openstack | Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. | 13:00 |
| *** openstack changes topic to " (Meeting topic: barbican)" | 13:00 | |
| openstack | The meeting name has been set to 'barbican' | 13:00 |
| redrobot | #topic Roll Call | 13:00 |
| *** openstack changes topic to "Roll Call (Meeting topic: barbican)" | 13:00 | |
| redrobot | Courtesy ping for ade_lee hrybacki jamespage Luzi lxkong moguimar raildo rm_work xek | 13:01 |
| Luzi | o/ | 13:01 |
| redrobot | As usual our agenda is here: | 13:01 |
| redrobot | #link https://etherpad.openstack.org/p/barbican-weekly-meeting | 13:01 |
| redrobot | Good morning Luzi! | 13:01 |
| Luzi | good morning redrobot | 13:01 |
| *** mhen has joined #openstack-barbican | 13:02 | |
| redrobot | Looks like it might just be you and me, Luzi | 13:03 |
| redrobot | #topic Action Items from last meeting | 13:03 |
| *** openstack changes topic to "Action Items from last meeting (Meeting topic: barbican)" | 13:03 | |
| *** graeb has joined #openstack-barbican | 13:03 | |
| graeb | o/ | 13:03 |
| mhen | o/ | 13:03 |
| redrobot | #link http://eavesdrop.openstack.org/meetings/barbican/2019/barbican.2019-01-22-13.01.html | 13:03 |
| redrobot | First up, redrobot to update the Barbican Wiki page and eavesdrop link to agenda | 13:04 |
| redrobot | I started doing this' | 13:04 |
| redrobot | but still need to finish it up | 13:04 |
| redrobot | so, punting | 13:04 |
| redrobot | #action redrobot to update the Barbican Wiki page and eavesdrop link to agenda | 13:04 |
| redrobot | next, redrobot to add stories for permanent fixes to the gate workarounds | 13:04 |
| redrobot | and I did not do this :( | 13:04 |
| redrobot | #action redrobot to add stories for permanent fixes to the gate workarounds | 13:05 |
| redrobot | that's it for action items | 13:05 |
| redrobot | let's move on | 13:05 |
| redrobot | #topic HSM support in TripleO | 13:05 |
| *** openstack changes topic to "HSM support in TripleO (Meeting topic: barbican)" | 13:05 | |
| redrobot | Things are moving along. | 13:05 |
| redrobot | We've got nothing but positive feedback in the governance change: | 13:06 |
| redrobot | #link https://review.openstack.org/#/c/631324/ | 13:06 |
| redrobot | The only thing we're missing now is mnaser's +1 on the infra change: | 13:06 |
| redrobot | #link https://review.openstack.org/#/c/631326/ | 13:06 |
| redrobot | Any questions about the HSM support in TripleO/ | 13:06 |
| redrobot | ? | 13:07 |
| redrobot | Ok, moving on | 13:08 |
| redrobot | Luzi, graeb, mhen do y'all have any topics you would like to discuss? | 13:08 |
| graeb | Nope | 13:08 |
| Luzi | nothing i can think about at this moment | 13:09 |
| Luzi | ah one thing: | 13:09 |
| Luzi | i am reviewing presentations from the security track | 13:09 |
| Luzi | for the summit | 13:10 |
| redrobot | Nice, Luzi! | 13:10 |
| redrobot | #topic Summit Presentations | 13:10 |
| *** openstack changes topic to "Summit Presentations (Meeting topic: barbican)" | 13:10 | |
| Luzi | so there are a few interesting presentations in the security track | 13:10 |
| redrobot | I submitted one along with dave-mccowan and ade_lee | 13:11 |
| redrobot | and also we submitted the hands-on workshop again | 13:11 |
| *** xek has joined #openstack-barbican | 13:11 | |
| redrobot | Luzi, anything you want to mention here? Or is is secret until they're published? 🤐🤐🤐 | 13:14 |
| Luzi | hmm its definitly a good range of topics in this spec :) | 13:14 |
| redrobot | Cool. Looking forward to voting on those in the near future. | 13:17 |
| redrobot | ok, moving on | 13:17 |
| redrobot | #topic Open discussion | 13:17 |
| *** openstack changes topic to "Open discussion (Meeting topic: barbican)" | 13:17 | |
| redrobot | Anything else? | 13:17 |
| redrobot | Alrighty y'all. Short meeting this week. | 13:18 |
| redrobot | See y'all around! | 13:18 |
| redrobot | #endmeeting | 13:18 |
| *** openstack changes topic to "OpenStack PTG Denver - https://etherpad.openstack.org/p/barbican-stein-ptg" | 13:18 | |
| openstack | Meeting ended Tue Jan 29 13:18:23 2019 UTC. Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4) | 13:18 |
| openstack | Minutes: http://eavesdrop.openstack.org/meetings/barbican/2019/barbican.2019-01-29-13.00.html | 13:18 |
| openstack | Minutes (text): http://eavesdrop.openstack.org/meetings/barbican/2019/barbican.2019-01-29-13.00.txt | 13:18 |
| openstack | Log: http://eavesdrop.openstack.org/meetings/barbican/2019/barbican.2019-01-29-13.00.log.html | 13:18 |
| cmurphy | hi, sorry I missed the meeting but I was hoping to bring attention to this bugfix that has not gotten much review attention https://review.openstack.org/544557 | 13:19 |
| redrobot | hi cmurphy | 13:20 |
| redrobot | cmurphy, I'll take a look at that today | 13:20 |
| cmurphy | thank you redrobot | 13:20 |
| *** ade_lee has quit IRC | 13:21 | |
| mnaser | i won't give you a +1 but i'll give you a +2 redrobot | 13:31 |
| redrobot | mnaser, YES! Even better. Thank you, mnaser! 😁😁😁 | 13:35 |
| *** mmethot has joined #openstack-barbican | 13:55 | |
| *** ade_lee has joined #openstack-barbican | 14:17 | |
| *** pcaruana has quit IRC | 14:45 | |
| *** pcaruana has joined #openstack-barbican | 14:53 | |
| *** Luzi has quit IRC | 15:05 | |
| *** mmethot_ has joined #openstack-barbican | 15:08 | |
| *** mmethot has quit IRC | 15:09 | |
| *** salmankhan has joined #openstack-barbican | 15:14 | |
| *** salmankhan has quit IRC | 15:18 | |
| *** moguimar has quit IRC | 15:28 | |
| *** livelace has joined #openstack-barbican | 15:37 | |
| *** livelace has quit IRC | 15:39 | |
| *** _mmethot_ has joined #openstack-barbican | 16:06 | |
| *** mmethot_ has quit IRC | 16:08 | |
| redrobot | ade_lee, http://git.openstack.org/cgit/openstack/ansible-role-ansible/ | 16:21 |
| redrobot | ade_lee, http://git.openstack.org/cgit/openstack/ansible-role-thales-hsm/ | 16:21 |
| FrankZhang | hey folks, got a dumb question about policy.json file. Can I remove the policy file in live then restart barbican service? Or re-deployment is needed? | 16:30 |
| *** graeb has quit IRC | 16:36 | |
| ade_lee | redrobot, nice | 16:51 |
| redrobot | FrankZhang, I want to say that barbican reads the policy.json on startup, so you should just restart barbican to pick up changes. | 16:52 |
| ade_lee | FrankZhang, as far as I understand it, the default policy is specified in code, so you only need a policy.json for overrides .. | 16:52 |
| ade_lee | so yeah - restart is all that is needed | 16:53 |
| FrankZhang | redrobot: at least there's supposed to be a policy.json, and absence of policy would cause barbican failing. Is that right? | 16:53 |
| ade_lee | FrankZhang, no -- there is default policy | 16:53 |
| redrobot | yeah, barbican has policy-in-code, so if there's no policy.json it defaults to the in-code policy | 16:54 |
| FrankZhang | ade_lee: I mean that default policy was accidentally deleted, the only fixing is re-deploy? | 16:54 |
| ade_lee | FrankZhang, which vewrsion are we talking about here? | 16:55 |
| FrankZhang | ade_lee: rocky | 16:55 |
| ade_lee | so for rocky for sure, policy in code was implemented .. this means that if you look at the code you will see policy there | 16:56 |
| ade_lee | even if you have no policy.json there, the default policy will be invoked | 16:56 |
| FrankZhang | I was thinking if barbican would re-generate default policy file in live if policy file was removed. | 16:56 |
| ade_lee | the policy.json file is only needed for overrides | 16:57 |
| ade_lee | and as far as I understand it, is supposed to be small as a result | 16:57 |
| FrankZhang | Okay, finally clear about that, thanks! ade_lee | 16:57 |
| ade_lee | just the diffs | 16:57 |
| ade_lee | FrankZhang, so yeah - if your policy.json had diffs in it from default policy, and it got deleted, then you could end up in different behavior | 16:58 |
| FrankZhang | cool, thanks ade | 17:00 |
| *** pcaruana has quit IRC | 17:01 | |
| *** whoami-rajat has quit IRC | 19:07 | |
| *** xek has quit IRC | 20:54 | |
| *** nadeem has joined #openstack-barbican | 21:01 | |
| *** ade_lee has quit IRC | 21:38 | |
| *** ade_lee has joined #openstack-barbican | 22:24 | |
| *** ade_lee has quit IRC | 22:41 | |
| *** ade_lee has joined #openstack-barbican | 22:42 | |
| -openstackstatus- NOTICE: http://zuul.openstack.org is not working. https://zuul.openstack.org does work. Please use that while we investigate. | 23:12 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!