Friday, 2014-09-05

« Thursday, 2014-09-04 Index Saturday, 2014-09-06 »
*** voodookid has joined #openstack-security00:45
*** bdpayne has quit IRC00:48
*** voodookid has quit IRC00:56
*** voodookid has joined #openstack-security00:58
*** canaima has joined #openstack-security01:08
*** canaima has quit IRC01:08
*** voodookid has quit IRC01:16
*** salv-orlando has quit IRC01:33
*** _amrith_ is now known as amrith02:22
*** zz_naotok is now known as naotok03:03
*** bdpayne has joined #openstack-security03:09
*** dmccowan has quit IRC03:21
*** voodookid has joined #openstack-security04:32
*** bdpayne has quit IRC04:33
*** voodookid has quit IRC04:53
*** salv-orlando has joined #openstack-security05:16
*** salv-orlando has quit IRC05:22
*** salv-orlando has joined #openstack-security06:20
*** salv-orlando has quit IRC07:04
*** naotok is now known as zz_naotok07:58
*** salv-orlando has joined #openstack-security09:05
*** zz_naotok is now known as naotok09:31
*** salv-orlando has quit IRC10:28
*** salv-orlando has joined #openstack-security10:45
*** salv-orlando_ has joined #openstack-security10:53
*** salv-orlando_ has quit IRC10:53
*** salv-orlando has quit IRC10:55
*** amrith is now known as _amrith_11:45
*** naotok is now known as zz_naotok11:46
openstackgerritTim Kelsey proposed a change to openstack/security-doc: Adding OSSN-0027 - Neutron ARP cache poisoning vulnerability.  https://review.openstack.org/11935312:00
*** openstackgerrit has quit IRC12:01
*** openstackgerrit has joined #openstack-security12:02
*** dmccowan has joined #openstack-security12:10
*** dmccowan has quit IRC12:17
*** dmccowan_ has joined #openstack-security12:18
*** _amrith_ is now known as amrith13:05
*** paulmo has joined #openstack-security13:15
*** bknudson has quit IRC13:30
*** bknudson has joined #openstack-security13:51
*** voodookid has joined #openstack-security14:02
*** voodookid has quit IRC14:24
*** salv-orlando has joined #openstack-security14:26
*** tmcpeak has joined #openstack-security14:27
tmcpeaknkinder: you around?14:41
*** voodookid has joined #openstack-security14:56
*** dmccowan_ has quit IRC15:11
*** bdpayne has joined #openstack-security15:15
tmcpeakbdpayne: looks like OSSN-0026 has sufficient amount of love to send it off15:16
*** bdpayne has quit IRC15:29
nkindertmcpeak: yeah15:31
tmcpeakok, so for cleaning up 2415:32
tmcpeakI'm going to need to do some dirt with Git15:32
*** dmccowan has joined #openstack-security15:32
tmcpeaksince I have an OSSN in flight I'm thinking check out the entire security doc to a different directory15:32
tmcpeakthen, since OSSN-0024 isn't in it, I'll use that git fetch command listed on the review15:32
nkindertmcpeak: just create a separate branch15:32
tmcpeakmmmm15:33
nkindertmcpeak: did you do your work on 0026 on a branch?15:33
tmcpeakyeah, I know that's the right answer15:33
tmcpeakbut if I forget to switch back I really don't want to have to deal with any craziness15:33
tmcpeakno, I didn't create a branch15:33
tmcpeakbad habit15:33
tmcpeakdid it all on master15:33
nkindertmcpeak: well, don't forget... :)15:33
tmcpeakfair enough15:33
nkindertmcpeak: easy to fix now....15:33
nkindertmcpeak: git log -2, then 'git reset --hard <previous commit>'15:34
tmcpeakthere's not going to be any craziness?15:34
tmcpeak26 is almost in the bag15:34
nkinderI'm reviewing 26 now15:34
tmcpeakcan't take craziness, it's Friday15:34
nkinderso everything for 26 is up in gerrit, so you can nuke your local copy first15:34
nkinderwhich that reset will do15:34
tmcpeakwhat if I need to change it again?15:35
nkinderonce it's reset, 'git review -d 118910' will pull down your review in a branch15:35
tmcpeaknow I can just do git add OSSN-0026, git commit —amend, git review15:35
tmcpeakahh ok15:35
nkinderin that new branch, you can do the same thing15:35
tmcpeakallright nkinder, you've never steered me wrong15:35
nkindertmcpeak: if you want to work on something else, 'git checkout master', 'git pull', 'git checkout -b new_branch'15:36
tmcpeaknkinder: ok, now I'm on new branch OSSN-002415:37
tmcpeakhow do I grab what he had15:37
tmcpeakis it that git fetch command listed below the review?15:37
nkindertmcpeak: ah, you can take a shortcut15:37
nkindertmcpeak: you don't need to create your own OSSN-0024 branch15:37
nkinderso let's clean that up first15:37
tmcpeakoops15:37
nkindergit checkout master, git branch -d OSSN-002415:38
tmcpeakcool15:38
nkinderYou can pull down shohel's review with 'git review -d <review_id>'15:38
nkinderthat will create a branch for you15:38
tmcpeakoh nice15:38
nkinderyou can update 0024 there, then git review to push up a new revision15:38
tmcpeakthat's a cool trick15:39
tmcpeakso from here after I modify, it will be git add ...15:39
tmcpeakthen git commit —amend or just git commit?15:39
nkindertmcpeak: the word 'arbitrary' would be good in the title of 0026, but that makes it a bit long15:39
nkindergit add <file>, git commit --amend, git review15:40
tmcpeakcool15:40
tmcpeaknkinder: yeah, I really prefer those to be one line15:41
tmcpeaknkinder: hey, so anybody can just snatch anybody else's review anytime they want?15:42
nkindertmcpeak: me too.  I'm happy with it as is15:42
nkindertmcpeak: yep15:42
tmcpeaknice, I see a karma pharming opportunity15:42
nkindertmcpeak: git review -d is handy for pulling down and testing others patches too15:42
nkindertmcpeak: well, people might also take offense if you snatch stuff...15:42
tmcpeaknkinder: lol, yeah, big time15:42
nkindertmcpeak: especially if you modify the "author" in the patch15:43
tmcpeaknkinder: oh, right15:44
tmcpeakbtw, what's the deal with this one? I haven't seen shohel in a while15:44
tmcpeakis he on vacation or something?15:44
nkindertmcpeak: if you do lots of work, you can at a 'Co-authored by:' tag15:44
nkindertmcpeak: probably just the timezone difference with Finland15:44
nkindertmcpeak: unless you're up early... :)15:44
tmcpeaknkinder: yeah, true15:45
nkindertmcpeak: just approved 002615:45
nkinderI'll publish it shortly15:45
tmcpeaksweet15:45
nkinderDon't really need a +1 from a projet core for this since it's a more generic note15:46
tmcpeaknkinder: between the 18 revisions on OSSN-0017, and the 5 here, I'm averaging to something reasonable15:46
openstackgerritA change was merged to openstack/security-doc: Adding OSSN-0026: Unrestricted write permission to config files can allow code execution  https://review.openstack.org/11891015:50
tmcpeakthere it goes15:50
openstackgerritTravis McPeak proposed a change to openstack/security-doc: Adds a new OpenStack Security Notes OSSN-0024: Sensitive data exposure by logging in python-keystoneclient  https://review.openstack.org/11446015:52
tmcpeak^ could use some reviews on that one15:54
*** bdpayne has joined #openstack-security16:04
bdpaynetmcpeak I'll take a look16:06
bdpaynetmcpeak, looks like nkinder beat me to it :-)16:09
*** amrith is now known as _amrith_16:12
tmcpeakbdpayne: not 26,16:12
tmcpeak24: https://review.openstack.org/#/c/114460/16:12
bdpaynebut... you said 26 :-)16:12
bdpayneI'll take a look at 2416:12
tmcpeakthat one's in the bag :)16:12
openstackgerritTravis McPeak proposed a change to openstack/security-doc: Adds a new OpenStack Security Notes OSSN-0024: Sensitive data exposure by logging in python-keystoneclient  https://review.openstack.org/11446016:13
tmcpeakhang on, still some formatting to fix16:13
bdpayneyou're killing me here16:14
tmcpeaklol sh*16:16
tmcpeaknkinder16:16
tmcpeakI've screwed myself up in git again16:16
tmcpeak:'(16:16
bdpaynewhat have you done?16:17
tmcpeaklol, I screwed up the top message when doing commit —ammend so it thought I had two checkins16:18
openstackgerritTravis McPeak proposed a change to openstack/security-doc: Adds a new OpenStack Security Notes OSSN-0024: Sensitive data exposure by logging in python-keystoneclient  https://review.openstack.org/11446016:19
bdpaynedo you have two commits?16:19
tmcpeakbdpayne: yeah, fixed it16:19
tmcpeakall yours16:19
bdpayneyeah, it looks reasonable now :-)16:19
bdpayneI can review in a few16:19
tmcpeaksounds good16:19
*** rlpple has joined #openstack-security16:26
bdpaynebut... you just -1'd it?16:44
* bdpayne is confused16:44
tmcpeakbdpayne: yeah, it's actually not mine16:49
tmcpeakit's shohel's16:49
bdpayneyeah, but I thought you were just fixing it up16:50
tmcpeakI just mean we need to move it along16:50
tmcpeakyeah, I was just formatting it16:50
bdpayneahh16:50
tmcpeakI don't know if he'll take it over or not16:50
tmcpeakmaybe leave comments and if it's still dead ended next week I'll just take it over16:50
bdpayneok16:52
*** openstackgerrit has quit IRC17:04
*** salv-orlando has quit IRC17:14
*** openstackgerrit has joined #openstack-security18:10
*** elo1 has joined #openstack-security18:14
nkindertmcpeak: your line wrapping on 0026 is incorrect :(18:56
nkindertmcpeak: you wrapped at 79 instead of 7218:56
tmcpeakI thought they were always wrapped at 7918:57
tmcpeaknkinder: ^18:58
tmcpeakhow should I fix it?18:58
nkinder79 is python, 72 is for PGP signing for e-mail18:58
tmcpeakoh crap, so it went out on the ML looking all messed up?18:58
nkindertmcpeak: create a new branch, fix it, then submit it just as you would for a new note18:58
nkindertmcpeak: no, I caught it when preparing the ML announcement18:58
tmcpeakoh awesome18:58
nkindertmcpeak: so let's fix it first, then I'll send it out18:59
nkindertmcpeak: can you handle that, then point me to the review?18:59
tmcpeakI'll have to update the wiki too18:59
tmcpeakforgot about that18:59
tmcpeakyep, will do18:59
nkindertmcpeak: thanks!18:59
nkindertmcpeak: I need to add a line-wrapping gate job...18:59
tmcpeakyeah, I totally thought it was 80 this whole time19:00
tmcpeaknkinder: made a new branch, how do I get 0026 in it19:01
tmcpeaktried git pull origin my_branch19:01
*** openstackgerrit has quit IRC19:01
*** openstackgerrit has joined #openstack-security19:02
tmcpeaknkinder: nvm, fixed it19:05
*** dmccowan has quit IRC19:07
openstackgerritTravis McPeak proposed a change to openstack/security-doc: Fixing line length for OSSN-0026 to fit in mail  https://review.openstack.org/11944719:10
tmcpeaknkinder: ^19:10
tmcpeaknkinder: if you do a gate test job for line length it has to be smart enough to ignore links19:11
openstackgerritTravis McPeak proposed a change to openstack/security-doc: Adds a new OpenStack Security Notes OSSN-0024: Sensitive data exposure by logging in python-keystoneclient  https://review.openstack.org/11446019:21
*** salv-orlando has joined #openstack-security19:41
openstackgerritA change was merged to openstack/security-doc: Fixing line length for OSSN-0026 to fit in mail  https://review.openstack.org/11944720:08
*** gabriela2 has joined #openstack-security20:12
*** gabriela2 has left #openstack-security20:12
nkindertmcpeak: 0026 has left the building...20:17
*** _amrith_ is now known as amrith20:20
tmcpeaknkinder: woohoo20:25
tmcpeak:)20:25
tmcpeakI touched up 24 too20:25
tmcpeaknkinder: you did the wiki?20:28
tmcpeaknkinder: that's very… wait for it: kind(er) of you20:33
tmcpeaksee what I did there!? :'D20:33
nkindertmcpeak: yep, took care of the wiki too20:56
nkindertmcpeak: I usually do that as a part of publishing in case it's not up to date20:56
tmcpeaknkinder: oh cool, I was going to loop around and grab it and then I saw you already did21:05
*** nkinder has quit IRC21:26
*** rlpple has quit IRC21:26
*** openstackgerrit has quit IRC21:31
*** openstackgerrit has joined #openstack-security21:32
*** bdpayne has quit IRC22:20
*** bknudson has quit IRC22:30
*** voodookid has quit IRC23:08
*** bdpayne has joined #openstack-security23:49
*** bdpayne has quit IRC23:58
« Thursday, 2014-09-04 Index Saturday, 2014-09-06 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!