| opendevreview | Riccardo Pittau proposed openstack/ironic-prometheus-exporter master: Replace fixed sleep with active polling in DevStack plugin https://review.opendev.org/c/openstack/ironic-prometheus-exporter/+/988442 | 09:38 |
|---|---|---|
| opendevreview | Verification of a change to openstack/tenks master failed: Add openstack.cloud collection to requirements https://review.opendev.org/c/openstack/tenks/+/993060 | 12:39 |
| opendevreview | Jed Preist proposed openstack/tenks master: Add Redfish support https://review.opendev.org/c/openstack/tenks/+/995697 | 13:02 |
| TheJulia | good morning | 13:26 |
| opendevreview | Jed Preist proposed openstack/tenks master: Add Redfish support https://review.opendev.org/c/openstack/tenks/+/995697 | 13:26 |
| opendevreview | Merged openstack/ironic bugfix/37.0: Only query Glance image members for shared images https://review.opendev.org/c/openstack/ironic/+/996345 | 13:43 |
| JayF | I am about to post a stack of patches, please prioritize their review and hold other patches from the gate until these land | 13:51 |
| opendevreview | Jay Faulkner proposed openstack/ironic master: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996461 | 13:52 |
| iurygregory | JayF, ack | 13:53 |
| opendevreview | Jay Faulkner proposed openstack/ironic master: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996462 | 13:53 |
| dtantsur | ^^^ needs sanity-check from someone who is not me | 13:53 |
| dtantsur | iurygregory, rpittau ^^^ | 13:54 |
| opendevreview | Jay Faulkner proposed openstack/ironic bugfix/37.0: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996463 | 13:54 |
| iurygregory | looking now | 13:54 |
| opendevreview | Jay Faulkner proposed openstack/ironic bugfix/37.0: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996464 | 13:54 |
| JayF | for some reason gerrit didn't like the signoffs for 44918, I'm having to amend the commit | 13:54 |
| JayF | I can't tell why but I'm just adding one it likes and moving forward | 13:55 |
| opendevreview | Jay Faulkner proposed openstack/ironic stable/2026.1: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996466 | 13:56 |
| opendevreview | Jay Faulkner proposed openstack/ironic stable/2026.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996469 | 13:56 |
| opendevreview | Jay Faulkner proposed openstack/ironic bugfix/34.0: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996470 | 13:56 |
| opendevreview | Jay Faulkner proposed openstack/ironic bugfix/34.0: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996471 | 13:57 |
| opendevreview | Jay Faulkner proposed openstack/ironic bugfix/33.0: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996473 | 13:57 |
| opendevreview | Jay Faulkner proposed openstack/ironic bugfix/33.0: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996474 | 13:58 |
| opendevreview | Jay Faulkner proposed openstack/ironic stable/2025.2: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996475 | 13:58 |
| opendevreview | Jay Faulkner proposed openstack/ironic stable/2025.2: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996476 | 13:58 |
| opendevreview | Jay Faulkner proposed openstack/ironic stable/2025.1: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996477 | 13:59 |
| opendevreview | Jay Faulkner proposed openstack/ironic stable/2025.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996478 | 13:59 |
| opendevreview | Jay Faulkner proposed openstack/ironic unmaintained/2024.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996479 | 14:00 |
| JayF | (there is no 2024.1 for 54423) | 14:00 |
| JayF | Going to get these urls into OSSAs | 14:01 |
| TheJulia | k | 14:01 |
| rpittau | JayF dtantsur: lgtm | 14:03 |
| JayF | if y'all could help land em it'd be ideal | 14:03 |
| JayF | I'll be doing paperwork another 15-20 minutes+ | 14:03 |
| JayF | https://review.opendev.org/c/openstack/ossa/+/996481 | 14:05 |
| opendevreview | Verification of a change to openstack/ironic stable/2026.1 failed: Only query Glance image members for shared images https://review.opendev.org/c/openstack/ironic/+/996344 | 14:08 |
| JayF | https://review.opendev.org/c/openstack/ossa/+/996482 | 14:09 |
| opendevreview | Verification of a change to openstack/networking-generic-switch master failed: Add NetconfOpenConfigSwitch driver https://review.opendev.org/c/openstack/networking-generic-switch/+/990061 | 14:25 |
| opendevreview | Verification of a change to openstack/networking-generic-switch master failed: Add NETCONF OpenConfig driver documentation https://review.opendev.org/c/openstack/networking-generic-switch/+/990062 | 14:25 |
| opendevreview | Verification of a change to openstack/ironic master failed: add a mypy tox environment and CI job https://review.opendev.org/c/openstack/ironic/+/996192 | 14:25 |
| opendevreview | Verification of a change to openstack/ironic master failed: Conditional check of remaining pending attributes https://review.opendev.org/c/openstack/ironic/+/993770 | 14:32 |
| opendevreview | Merged openstack/ironic-python-agent-builder master: Mask dnf-makecache and fwupd-refresh services in ramdisk https://review.opendev.org/c/openstack/ironic-python-agent-builder/+/993049 | 14:34 |
| opendevreview | Verification of a change to openstack/ironic bugfix/37.0 failed: Fix BIOS firmware update not applied when TaskMonitor disappears https://review.opendev.org/c/openstack/ironic/+/996282 | 14:38 |
| opendevreview | Verification of a change to openstack/ironic stable/2026.1 failed: Fix BIOS firmware update not applied when TaskMonitor disappears https://review.opendev.org/c/openstack/ironic/+/996283 | 14:50 |
| TheJulia | I feel like there should be a song about the gate going sideways | 14:54 |
| TheJulia | Preferably in 50s lounge style | 14:55 |
| JayF | TheJulia: I just get this GIF in my head https://media1.giphy.com/media/v1.Y2lkPTc5MGI3NjExemo1aHd6aGJ5bHBwOW8zOHNnanMxb253ZDlvaXNucXFoNWU1b3AycCZlcD12MV9pbnRlcm5hbF9naWZfYnlfaWQmY3Q9Zw/yx400dIdkwWdsCgWYp/giphy.gif | 14:55 |
| TheJulia | is that to be let into the lounge ? | 14:56 |
| TheJulia | Looks like we're going to need to do some re-checking, but that tends to happen when a bunch of patches get dropped on CI | 14:59 |
| JayF | yeah, mainly my goal is to get the OSSAs merged and announced | 15:00 |
| JayF | then focus on patch merging | 15:00 |
| TheJulia | ++ | 15:00 |
| TheJulia | WARNING: Retrying (Retry(total=4, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='mirror.gra1.ovh.opendev.org', port=443): Read timed out. (read timeout=60.0)")': /pypi/simple/pecan/ :( | 15:00 |
| JayF | That has been removed from rotation | 15:01 |
| JayF | that site has, I believe | 15:01 |
| TheJulia | k | 15:03 |
| TheJulia | for the record, when there is a nearby fire called the "Volcano Fire", you get images in your mind. | 15:13 |
| opendevreview | Merged openstack/ironic bugfix/37.0: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996463 | 15:15 |
| opendevreview | Dmitry Tantsur proposed openstack/ironic master: Trivial: fix pep8 violations in redfish/firmware.py https://review.opendev.org/c/openstack/ironic/+/996493 | 15:33 |
| * TheJulia blinks at zuul | 15:47 | |
| TheJulia | I just saw a bunch of successful jobs get marked failure | 15:50 |
| TheJulia | oh, no, it seems to be https://review.opendev.org/c/openstack/ironic/+/996462 | 15:51 |
| dtantsur | But what is success?... | 15:51 |
| TheJulia | one moved off the list on my screen and that was why | 15:51 |
| dtantsur | huh, this is fun https://review.opendev.org/c/openstack/ironic/+/996462/1/ironic/api/controllers/v1/node.py#3209 | 15:52 |
| TheJulia | ugh | 15:53 |
| dtantsur | (maybe there is a lesson in it: don't let a person who has little clue about RBAC create RBAC-related patches) | 15:53 |
| TheJulia | heh, nah, thats not it ;) | 15:53 |
| TheJulia | I have a meeting I have to be focused on in about six minutes, should have a semi-available brain again in about an hour | 15:56 |
| TheJulia | and to think I almost punted back but after TIL moment on that line I was like "okay!" | 15:58 |
| * TheJulia reminds self to be anti-magic | 15:58 | |
| TheJulia | https://ftp.eu.openbsd.org/pub/OpenBSD/songs/song31.mp3 <-- for some reason, this comes to mind. | 15:59 |
| opendevreview | Merged openstack/tenks master: Add Redfish support https://review.opendev.org/c/openstack/tenks/+/995697 | 16:02 |
| fungi | i love that openbsd has continued to include a new song with every release for 24 years and counting | 16:06 |
| fungi | oh maybe not every release, some recent ones got skipped, but 7.9 (the most recent) still got one | 16:07 |
| fungi | it's a fun tradition regardless | 16:08 |
| TheJulia | oh yeah, I think for where they didn't make a song, they did some artwork or a comic if memory serves | 16:09 |
| fungi | dtantsur: can i assume pavlo's comment on the child node rbac bug (OSSA-2026-026) is the same problem you were already discussing? | 16:10 |
| TheJulia | fungi: yeah | 16:10 |
| fungi | perfect, i was mainly popping in to make sure it wasn't lost in the shuffle | 16:11 |
| TheJulia | I don't entirely understand why yet, but I have a meeting and can shift the gears after the meeting | 16:18 |
| dtantsur | It would be great. I don't want to pick it up so close to the evening. | 16:19 |
| TheJulia | sure sure | 16:19 |
| opendevreview | Dmitry Tantsur proposed openstack/bifrost master: Enable TLS by default, deprecate enable_tls https://review.opendev.org/c/openstack/bifrost/+/968363 | 16:30 |
| opendevreview | Dmitry Tantsur proposed openstack/ironic master: Add an option for OCI-specific TLS settings. https://review.opendev.org/c/openstack/ironic/+/968361 | 16:41 |
| opendevreview | Dmitry Tantsur proposed openstack/ironic-python-agent master: Provide more context about inspection on lookup https://review.opendev.org/c/openstack/ironic-python-agent/+/968475 | 17:00 |
| opendevreview | Dmitry Tantsur proposed openstack/sushy-tools master: memoize: do not leak open connections https://review.opendev.org/c/openstack/sushy-tools/+/972222 | 17:02 |
| opendevreview | Verification of a change to openstack/ironic bugfix/34.0 failed: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996470 | 17:18 |
| opendevreview | Dmitry Tantsur proposed openstack/ironic master: Verify agent TLS certificate and provide diagnostics https://review.opendev.org/c/openstack/ironic/+/911116 | 17:38 |
| TheJulia | okay, this is just bizare | 17:38 |
| opendevreview | Verification of a change to openstack/ironic master failed: add a mypy tox environment and CI job https://review.opendev.org/c/openstack/ironic/+/996192 | 17:43 |
| TheJulia | dtantsur: don't beat yourself up, with the way the unit tests are patterned, there would have been no way to detect it short of looking at the actual resulting patch values getting committed to the db | 17:55 |
| TheJulia | I just sent a while going "wtaf" | 17:55 |
| TheJulia | spent | 17:55 |
| * cardoe hides behind a yak. | 18:00 | |
| * TheJulia gets out the atomic yak shaver | 18:01 | |
| cardoe | That could possibly be my most favorite tool. | 18:03 |
| cardoe | Lemme know if you guys need help. I'm out of the loop but happy to assist. | 18:04 |
| TheJulia | fwiw, assume this is the world of fallout, as long as I get the giant axalotal | 18:04 |
| TheJulia | I'm just working on a test which would have detected this | 18:04 |
| cardoe | I've been tackling similar things with my buddy Fable but from a different angle. | 18:06 |
| cardoe | So I'm making a number of distinct types for things | 18:06 |
| cardoe | So you just cannot get to places if you use the right type. | 18:07 |
| cardoe | Won't solve the same issues but hopefully will help with others. | 18:08 |
| cardoe | e.g. TaskManager. I've got TaskNodeManager as well. Because a TaskManager "task" doesn't necessarily have "task.node". But a TaskNodeManager MUST have a node. | 18:09 |
| TheJulia | if we had really had a pattern of looking at db objects we tried to commit on api tests, we would have spotted this unfortuantely | 18:10 |
| TheJulia | its one step removed, really. | 18:10 |
| cardoe | We've got Node. And I've now got NodeLocked as well. Which is a node that we've locked. | 18:10 |
| cardoe | hjensas: so I wanna make a tweak to baremetal-l2vni which on the delete/remove path we only action on the port if "baremetal-l2vni" was in the bound driver list on that port. | 18:12 |
| TheJulia | I'm going to have to bump complexity up :\ | 18:13 |
| TheJulia | cardoe: can you rephrase that into human words for context changes? | 18:14 |
| cardoe | uh need food? | 18:17 |
| opendevreview | Julia Kreger proposed openstack/ironic master: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996462 | 18:18 |
| cardoe | Your brain is mushy from ^ | 18:18 |
| TheJulia | go eat | 18:18 |
| cardoe | And my brain is mushy from other stuff. | 18:18 |
| TheJulia | something tasty | 18:18 |
| cardoe | So binding_vif_details has a dictionary with the keys being string-ified numbers starting with 0 and incrementing for each "binding level" that was completed by a driver. | 18:21 |
| cardoe | So in the repo test case you'll have {"0": "baremetal-l2vni", "1": "networking-generic-switch"} | 18:22 |
| TheJulia | oh, that would be perfect and enable clean unwind without making level assumptions | 18:22 |
| cardoe | That's because we have "mechanism_drivers = ovn,baremetal_l2vni,baremetal,genericswitch" in our neutron config. | 18:23 |
| TheJulia | well, relying upon config is actually "wrong" because that can change | 18:23 |
| cardoe | And lemme correct my example above based on actually reading | 18:23 |
| TheJulia | if your unwindinging and that order changes because someone doesn't know better | 18:23 |
| TheJulia | then you risk a failed unbind or sloppy state | 18:23 |
| cardoe | {"0": "baremetal_l2vni", "1": "genericswitch"} | 18:23 |
| TheJulia | which ideally should never be left | 18:23 |
| cardoe | In the current releases of neutron you'll bind / create / update in the order of mechanism_drivers. You'll also remove / delete IN order as well. | 18:24 |
| cardoe | I've patched Neutron in master now to do remove / delete in reverse order. | 18:24 |
| TheJulia | gooooooood | 18:26 |
| cardoe | I'm adding a helper method for the remove / delete case which driver.am_i_bound(self, port) | 18:26 |
| TheJulia | ^^^ please ensure the good is in the voice and cape of Darth Sidious | 18:26 |
| cardoe | Which checks to see if "baremetal_l2vni" appears in that binding_vif_details for example for that method if its called from the baremetal_l2vni driver | 18:27 |
| cardoe | If it's false then we return out and don't do anything. | 18:27 |
| TheJulia | cardoe: if you wouldn't mind, a review on https://review.opendev.org/c/openstack/ironic/+/996462 | 18:28 |
| TheJulia | that makes sense, if we can get neutron to land general improvements | 18:28 |
| TheJulia | fwiw, once 996462 starts passing, I guess I'll start cherry-picking it along | 18:38 |
| opendevreview | Merged openstack/ironic stable/2025.2: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996475 | 18:40 |
| opendevreview | Merged openstack/ironic stable/2026.1: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996466 | 18:40 |
| opendevreview | Merged openstack/ironic master: Trivial: fix pep8 violations in redfish/firmware.py https://review.opendev.org/c/openstack/ironic/+/996493 | 18:48 |
| TheJulia | Looks like CI is good for https://review.opendev.org/c/openstack/ironic/+/996462 just maybe 8 more jobs left to pass | 19:07 |
| TheJulia | cardoe, iurygregory, if one of y'all could +2 https://review.opendev.org/c/openstack/ironic/+/996462 it woudl be appreciated | 19:08 |
| cardoe | Oh my bad. You asked me to review something and I kept talking and walked off to eat. | 19:08 |
| JayF | TheJulia: do you want me to abandon my existing backports or are you gonna reuse the change-id? | 19:09 |
| TheJulia | I'll keep the change Id and just re-cherry-pick | 19:10 |
| TheJulia | that way keeps the paperwork from needing to be amended | 19:10 |
| JayF | oh yeah of course, I forgot about that | 19:11 |
| JayF | ideal | 19:11 |
| opendevreview | Julia Kreger proposed openstack/ironic bugfix/37.0: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996464 | 19:14 |
| * TheJulia gets out the cli | 19:15 | |
| opendevreview | Julia Kreger proposed openstack/ironic stable/2026.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996469 | 19:23 |
| JayF | TheJulia: https://review.opendev.org/c/openstack/ironic/+/996469/1..2 rebase whitespace unintentional? | 19:24 |
| JayF | in ironic.command.status | 19:24 |
| cardoe | I’m coming back. | 19:24 |
| opendevreview | Julia Kreger proposed openstack/ironic stable/2026.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996469 | 19:25 |
| JayF | +2 | 19:25 |
| opendevreview | Julia Kreger proposed openstack/ironic bugfix/34.0: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996471 | 19:27 |
| opendevreview | Julia Kreger proposed openstack/ironic bugfix/33.0: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996474 | 19:27 |
| opendevreview | Julia Kreger proposed openstack/ironic stable/2025.2: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996476 | 19:27 |
| JayF | TheJulia: ^ that got the same rando whitespace | 19:28 |
| TheJulia | yeah, because of other changes | 19:28 |
| opendevreview | Julia Kreger proposed openstack/ironic stable/2025.2: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996476 | 19:29 |
| JayF | I hate when that happens on a back rebase, especially if it's git's auto resolver doing it | 19:30 |
| opendevreview | Julia Kreger proposed openstack/ironic stable/2025.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996478 | 19:37 |
| opendevreview | Julia Kreger proposed openstack/ironic unmaintained/2024.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996479 | 19:44 |
| JayF | ironic.cmd.status got full on >>>>> ====='d | 19:44 |
| JayF | (unresolved patch markers in ^) | 19:44 |
| TheJulia | .... what?!? | 19:45 |
| * TheJulia blinks | 19:45 | |
| TheJulia | bizzar | 19:45 |
| JayF | https://www.youtube.com/watch?v=C2cMG33mWVY | 19:45 |
| opendevreview | Julia Kreger proposed openstack/ironic unmaintained/2024.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996479 | 19:46 |
| TheJulia | okay, that one was me | 19:46 |
| JayF | tyvm | 19:46 |
| JayF | other cores ^ that CVE-2026-44918 chain will need +2s from someone else | 19:47 |
| opendevreview | Merged openstack/ironic master: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996461 | 19:47 |
| TheJulia | woot | 19:47 |
| cardoe | I gave it a +2 | 19:49 |
| cardoe | I hate the types | 19:49 |
| JayF | I tossed rechecks on the send_raw patches as needed | 19:49 |
| opendevreview | Julia Kreger proposed openstack/ironic unmaintained/2023.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996529 | 19:52 |
| TheJulia | JayF: thanks! | 19:53 |
| JayF | TheJulia: I'll note we didn't 2023.1 on the advisory for that. Happy to land it anyway but you might wanna reply to the list and let folks know it exists | 19:53 |
| * JayF reviews | 19:54 | |
| TheJulia | Yeah, I first want to see how that goes against CI | 19:54 |
| TheJulia | if its good, I'll unwip it and we can do so | 19:54 |
| JayF | ack I'll let it sit then :) | 19:54 |
| TheJulia | (save mumesan[m] some headache tomorrow too) | 19:54 |
| JayF | TheJulia: cc clif -- have we ever considered just turning that complexity check off? | 19:55 |
| JayF | TheJulia: I've never once seen someone say "oh no! I better make this less complex!" I only see the number increment | 19:55 |
| JayF | which to me indicates it's of incredibly dubious value anyway | 19:55 |
| clif | I generally agree with JayF | 19:56 |
| clif | while less complex is better, sometimes you can't reduce complexity easily | 19:56 |
| TheJulia | so generally the times where I've had to bump it up, I've often gone back and fixed it | 19:56 |
| TheJulia | but... patch with a backport series, was just undesirable and I might try to look tomorrow, but the patch logic is... eh | 19:56 |
| TheJulia | I almost wish we had a "i know, i know, just ignore the complexity in this method" flag | 19:57 |
| JayF | Up to you :) I care minimally, it doesn't seem like a valuable metric | 19:57 |
| cardoe | Solved with more indirection! | 19:57 |
| TheJulia | It is situational really and its a guard rail | 19:57 |
| JayF | and I suspect any time spent making number-go-lower instead being pointed at typing, for instance, is a better use | 19:57 |
| JayF | but IDK | 19:57 |
| TheJulia | I remember ages ago we used to try and be strict about it too | 19:57 |
| JayF | we used to be strict about a lot of things lol | 19:57 |
| TheJulia | now, I'm more a "is there more risk here I should be mindful of or not" | 19:58 |
| TheJulia | but I've done some of that cleanup in the past so *shrug* | 19:58 |
| clif | somewhat useful as a feedback item/warning, not as valuable as a hard limit imo | 19:59 |
| TheJulia | ++ | 19:59 |
| * TheJulia senses migrain meds are in order soon | 19:59 | |
| JayF | which is basically how we treat it, so 🤷 | 19:59 |
| clif | clippy: it looks like you're writing some complex code... are you sure you want to do that? ;) | 20:00 |
| TheJulia | clif: your supposed to change your nick to clippy first ;) | 20:00 |
| clif | too lazy! | 20:00 |
| JayF | https://en.wikipedia.org/wiki/Microsoft_Bob I still think if they stuck with the dog from bob | 20:01 |
| JayF | it would've been more successful | 20:01 |
| JayF | clippy was too much of a nerd /s | 20:01 |
| TheJulia | Clippy was also evil. | 20:03 |
| opendevreview | Merged openstack/ironic master: add a mypy tox environment and CI job https://review.opendev.org/c/openstack/ironic/+/996192 | 20:11 |
| TheJulia | yeah, looks like I'll need to do some additional work on the 2023.1 change | 20:15 |
| TheJulia | exercise first | 20:15 |
| opendevreview | Julia Kreger proposed openstack/ironic unmaintained/2023.1: CVE-2026-44918: Prevent rehoming resources to nodes with different owner https://review.opendev.org/c/openstack/ironic/+/996529 | 21:22 |
| TheJulia | Okay, that should address the non-parent node stuffs and work | 21:23 |
| * TheJulia crosses fingers | 21:23 | |
| opendevreview | Merged openstack/ironic bugfix/34.0: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996470 | 22:26 |
| opendevreview | Merged openstack/ironic bugfix/33.0: security: block vendor.send_raw (CVE-2026-54423) https://review.opendev.org/c/openstack/ironic/+/996473 | 22:37 |
| opendevreview | Ghanshyam Maan proposed openstack/ironic master: Remove setting of oslo_policy[enforce_scope] flag https://review.opendev.org/c/openstack/ironic/+/996559 | 22:37 |
| TheJulia | we likely need to follow-up on ^^^ with a release note, fwiw | 22:57 |
| JayF | That was only test changes. But I agree it would be ideal for us to push a release note about the requirements change. | 23:41 |
Generated by irclog2html.py 4.1.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!