Wednesday, 2022-02-02

« Tuesday, 2022-02-01 Index Thursday, 2022-02-03 »
mnasergagehugo, lamt: i just found out that https://review.opendev.org/c/openstack/openstack-helm/+/814693 is caused a serious security issue.. we are symlinking the files but the problem is rotating keys means the files its pointing at are no longer there04:55
mnaserhttps://www.irccloud.com/pastebin/low4jIju/04:55
mnaserwhich means its only using the `0` key cause thats the only one that actually exists with the biggest id, the rest all give ENOFILE04:56
mnaserthis means all tokens issued are invalidated04:57
gagehugohmm05:04
gagehugoif so probably easiest to revert and deal with the spam05:05
opendevreviewGage Hugo proposed openstack/openstack-helm master: Revert "fix(log): reduces chattiness in keystone log"  https://review.opendev.org/c/openstack/openstack-helm/+/82739105:17
opendevreviewGage Hugo proposed openstack/openstack-helm master: Revert "fix(log): reduces chattiness in keystone log"  https://review.opendev.org/c/openstack/openstack-helm/+/82739105:18
opendevreviewGage Hugo proposed openstack/openstack-helm master: Revert "fix(log): reduces chattiness in keystone log"  https://review.opendev.org/c/openstack/openstack-helm/+/82739105:20
gagehugolamt: ^ Can you take a look?05:20
opendevreviewMohammed Naser proposed openstack/openstack-helm master: Revert "fix(log): reduces chattiness in keystone log"  https://review.opendev.org/c/openstack/openstack-helm/+/82738905:29
mnasergagehugo: oh oops i just made the revert lol05:29
mnaserlooks like we did exactly the same thing :p05:29
mnaserill abandon mine05:29
gagehugono worries05:36
gagehugothanks for investigating that05:36
mnaserno problem, we only realized it since we saw a bunch of 403s happening at 00:00 and 12:00 utc and then the digging got me there05:38
opendevreviewOleksandr Kozachenko proposed openstack/openstack-helm-infra master: Use rclone for mysql remote backup to enable both s3 and swift backup  https://review.opendev.org/c/openstack/openstack-helm-infra/+/78002712:18
opendevreviewMaik Catrinque proposed openstack/openstack-helm-infra master: Add force_boot command to rabbit start template  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82479616:55
opendevreviewAndrii Ostapenko proposed openstack/openstack-helm-images master: Fix gates  https://review.opendev.org/c/openstack/openstack-helm-images/+/82753117:13
opendevreviewFrancis Bacon Yi proposed openstack/openstack-helm-infra master: Syslog Fix  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82753417:56
opendevreviewAnjeev Kumar proposed openstack/openstack-helm-infra master: Added pgcrypto extension  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82400418:00
opendevreviewAnjeev Kumar proposed openstack/openstack-helm-infra master: Added pgcrypto extension  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82400418:02
opendevreviewMerged openstack/openstack-helm-images master: Fix gates  https://review.opendev.org/c/openstack/openstack-helm-images/+/82753118:07
opendevreviewStephen Taylor proposed openstack/openstack-helm-infra master: Move ceph-mgr deployment to the ceph-mon chart  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82755220:11
opendevreviewStephen Taylor proposed openstack/openstack-helm-infra master: Move ceph-mgr deployment to the ceph-mon chart  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82755220:14
opendevreviewStephen Taylor proposed openstack/openstack-helm-infra master: Move ceph-mgr deployment to the ceph-mon chart  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82755220:34
opendevreviewStephen Taylor proposed openstack/openstack-helm-infra master: Move ceph-mgr deployment to the ceph-mon chart  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82755220:48
opendevreviewStephen Taylor proposed openstack/openstack-helm-infra master: Move ceph-mgr deployment to the ceph-mon chart  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82755221:12
opendevreviewStephen Taylor proposed openstack/openstack-helm-infra master: Move ceph-mgr deployment to the ceph-mon chart  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82755221:17
opendevreviewStephen Taylor proposed openstack/openstack-helm-infra master: Move ceph-mgr deployment to the ceph-mon chart  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82755221:27
opendevreviewVladimir Sigunov proposed openstack/openstack-helm-infra master: [CEPH] Discovering ceph-mon endpoints  https://review.opendev.org/c/openstack/openstack-helm-infra/+/82147422:08
opendevreviewMerged openstack/openstack-helm master: Revert "fix(log): reduces chattiness in keystone log"  https://review.opendev.org/c/openstack/openstack-helm/+/82739122:42
« Tuesday, 2022-02-01 Index Thursday, 2022-02-03 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!