Tuesday, 2015-08-04

*** jhfeng has quit IRC00:08
*** salv-orlando has quit IRC00:31
*** edmondsw has quit IRC00:45
*** bpokorny has quit IRC00:57
*** browne has quit IRC01:12
*** sdake_ has quit IRC01:15
*** sdake has joined #openstack-security01:16
*** salv-orlando has joined #openstack-security01:33
*** salv-orlando has quit IRC01:41
*** tjt263 has quit IRC01:43
*** bpokorny has joined #openstack-security02:03
*** wil1 has joined #openstack-security02:23
*** wil1 has left #openstack-security02:25
*** salv-orlando has joined #openstack-security02:40
*** browne has joined #openstack-security02:41
*** sdake has quit IRC02:48
*** salv-orlando has quit IRC02:49
*** pdesai has joined #openstack-security02:51
*** pdesai has quit IRC02:52
*** bpokorny has quit IRC02:53
*** bpokorny has joined #openstack-security03:00
*** sdake has joined #openstack-security03:16
*** sdake_ has joined #openstack-security03:38
*** sdake has quit IRC03:41
*** salv-orlando has joined #openstack-security03:50
*** bpokorny has quit IRC03:53
*** salv-orl_ has joined #openstack-security03:57
*** salv-orlando has quit IRC03:57
*** salv-orl_ has quit IRC04:01
*** bpokorny has joined #openstack-security04:03
openstackgerritEric Brown proposed openstack/bandit: Add a confidence filter  https://review.openstack.org/20725804:03
*** pdesai has joined #openstack-security04:31
*** bpokorny has quit IRC04:32
*** elo has quit IRC04:37
*** bpokorny has joined #openstack-security04:38
*** bpokorny has quit IRC04:42
*** tmcpeak has quit IRC04:57
*** salv-orlando has joined #openstack-security05:00
*** pdesai has quit IRC05:01
*** pdesai has joined #openstack-security05:03
openstackgerritEric Brown proposed openstack/bandit: Add a confidence filter  https://review.openstack.org/20725805:07
*** salv-orlando has quit IRC05:13
*** viraptor has joined #openstack-security05:19
openstackgerritEric Brown proposed openstack/bandit: NIT: Fix missing python 3 in classifier  https://review.openstack.org/20880505:32
*** ig0r_ has joined #openstack-security05:46
*** pdesai has quit IRC06:03
*** ig0r_ has quit IRC06:04
*** salv-orlando has joined #openstack-security06:10
*** ig0r_ has joined #openstack-security06:11
openstackgerritOpenStack Proposal Bot proposed openstack/security-doc: Imported Translations from Transifex  https://review.openstack.org/20881906:16
*** salv-orlando has quit IRC06:21
*** salv-orlando has joined #openstack-security06:22
*** h00327910__ has joined #openstack-security07:01
*** alex_klimov has joined #openstack-security07:11
openstackgerritStanislaw Pitucha proposed openstack/anchor: Update package description to include py3  https://review.openstack.org/20885907:16
*** alex_klimov has quit IRC07:33
*** alex_klimov has joined #openstack-security07:33
*** browne has quit IRC07:36
*** tjt263 has joined #openstack-security08:11
*** shohel has joined #openstack-security08:12
*** fubi has joined #openstack-security08:12
*** tkelsey has joined #openstack-security08:43
*** shohel has quit IRC08:47
openstackgerritDave Walker proposed openstack/bandit: Actually default to /etc/ rather than just claim  https://review.openstack.org/20345109:38
*** openstackgerrit_ has joined #openstack-security09:53
openstackgerritMerged openstack/anchor: Updated from global requirements  https://review.openstack.org/20504410:45
*** fubi has quit IRC10:57
*** tjt263 has quit IRC11:10
*** openstackgerrit has quit IRC11:31
*** openstackgerrit_ is now known as openstackgerrit11:31
*** openstackgerrit has quit IRC11:32
*** openstackgerrit_ has joined #openstack-security11:32
openstackgerrit_Stanislaw Pitucha proposed openstack/anchor: Implement new API format  https://review.openstack.org/19047311:32
*** openstackgerrit_ is now known as openstackgerrit11:32
openstackgerritStanislaw Pitucha proposed openstack/anchor: Move all plugins to stevedore  https://review.openstack.org/20831111:32
openstackgerritStanislaw Pitucha proposed openstack/anchor: Move sample config for tests to one place  https://review.openstack.org/20775211:32
openstackgerritStanislaw Pitucha proposed openstack/anchor: Allow configurable signing backends  https://review.openstack.org/20139411:32
*** openstackgerrit_ has joined #openstack-security11:33
*** dave-mccowan has joined #openstack-security11:38
*** sdake_ has quit IRC11:47
*** viraptor has quit IRC11:51
*** viraptor has joined #openstack-security11:51
*** openstackgerrit has quit IRC12:16
*** openstackgerrit has joined #openstack-security12:16
*** edmondsw has joined #openstack-security12:27
*** sdake has joined #openstack-security12:36
*** rmarathu has joined #openstack-security12:40
*** zul has joined #openstack-security12:53
*** zul has quit IRC12:53
*** zul has joined #openstack-security12:53
*** bknudson has joined #openstack-security12:57
*** shohel has joined #openstack-security13:07
*** browne has joined #openstack-security13:07
*** singlethink has joined #openstack-security13:27
*** ig0r_ has quit IRC13:27
*** browne has quit IRC13:30
*** ig0r_ has joined #openstack-security13:30
*** singleth_ has joined #openstack-security13:31
*** singlethink has quit IRC13:34
*** tmcpeak has joined #openstack-security13:36
tmcpeakDaviey: you around?13:47
openstackgerritMerged openstack/bandit: NIT: Fix missing python 3 in classifier  https://review.openstack.org/20880513:54
Davieytmcpeak: always13:56
*** viraptor has quit IRC13:56
openstackgerritMerged openstack/bandit: Add a confidence filter  https://review.openstack.org/20725813:57
*** sigmavirus24_awa is now known as sigmavirus2414:00
*** ig0r_ has quit IRC14:00
*** singlethink has joined #openstack-security14:00
sigmavirus24Daviey: looking14:01
Davieysigmavirus24: ta14:02
Davieytmcpeak: wassup?14:02
*** singleth_ has quit IRC14:02
openstackgerritBrant Knudson proposed openstack/bandit: Convert README to rst  https://review.openstack.org/20908214:13
*** salv-orlando has quit IRC14:20
*** voodookid has joined #openstack-security14:21
*** hyakuhei1 has joined #openstack-security14:25
*** voodookid has quit IRC14:27
*** salv-orlando has joined #openstack-security14:27
*** hyakuhei has quit IRC14:28
tmcpeakDaviey: I was going to try to dispute your claim that this is a pbr issue, but I actually think I agree with you14:32
tmcpeakso the idea is that despite homebrew installing Python packages etc in a different directory, pbr should ensure it's placed in that /Library path?14:33
tmcpeakit meaning the config file?14:33
tmcpeakhmm I guess let's walk through this14:34
openstackgerritBrant Knudson proposed openstack/bandit: Convert README to rst  https://review.openstack.org/20908214:35
tmcpeakDaviey: so I install Bandit (prior to your change) and I'm using the config from the bandit/config/bandit.yaml directory14:36
tmcpeakin roughly the same location is bandit/plugins14:37
tmcpeakcan we add that path as an option to your change? as a last resort it looks relative to the installed location?14:37
tmcpeakI agree though, pbr is supposed to ensure that data_files are placed elsewhere14:38
*** voodookid has joined #openstack-security14:40
*** salv-orl_ has joined #openstack-security14:47
*** salv-orlando has quit IRC14:49
*** elo has joined #openstack-security15:00
Davieytmcpeak: Yeah.. I think i'll add that path aswell as a last choice15:00
DavieyFor most people it shouldn't exist, but for $something broken (as in your case), it'll work15:00
Davieytmcpeak: thanks for following up on the bug btw15:01
sigmavirus24to be very clear15:01
sigmavirus24I don't think this is pbr's fault15:01
sigmavirus24I haven't had a chance to investigate yet15:01
Davieysigmavirus24: I think it is a brew bug personally15:01
sigmavirus24But pbr is merely translating setup.cfg to setuptools.setup parameters15:01
sigmavirus24Daviey: why?15:01
Davieysigmavirus24: I guess I don't understand the Cellar stuff enough.. but that feels like the variable in this.15:03
tmcpeakDaviey: sounds good15:03
Davieysigmavirus24: if non-brew python is used, we see the right thing15:03
Davieysigmavirus24: If you have a cycle (and a mac) to help dig into this, i'd be really appreciative15:03
DavieyIt is a shame Apple don't provide dev vm images..15:04
sigmavirus24Uh why are we concerned with Cellar?15:04
tmcpeaksigmavirus24: the appdirs thing is not working correclty in my env15:05
tmcpeakI used brew which means that my python directories are all rooted in cellar15:05
sigmavirus24Right but Cellar has nothing to do with install path of anything byt Python15:05
sigmavirus24tmcpeak: how did you reach that conclusion?15:05
sigmavirus24brew installed python should put everything in /usr/local/lib/python{version}/15:06
sigmavirus24Cellar is where "python" itself is symlinked from15:06
tmcpeaksigmavirus24: it does15:06
sigmavirus24If that's a problem for appdirs that's a bug in appdirs, not pbr, not brew15:06
tmcpeaksigmavirus24: yeah, that was my thought as well15:06
tmcpeakthis seems like a bug in appdirs15:07
tmcpeakappdirs is failing to take into account that for brew installed python stuff goes in /usr/local not /Library15:07
sigmavirus24If what's happening is that appdirs is looking in /usr/local/Cellar then yeah15:07
sigmavirus24that's appdirs problem, not python, not pbr, not setuptools, not pip, not homebrew15:07
sigmavirus24which python should be /usr/local/bin/python15:07
tmcpeakit is15:08
tmcpeakappdirs seems to expect /Library something15:08
sigmavirus24which means appdirs should be looking in /usr/local/lib/python{2.7,3.4,whatever}/15:08
sigmavirus24That's for OSX apps iirc15:08
tmcpeaksigmavirus24: stock Apple Python is there too15:09
sigmavirus24And I suppose I can't test this in a virtualenv with appdirs because there it works perfectly15:09
sigmavirus24Yeah and stock Ruby I see15:09
tmcpeak- /Library/Python/2.7/site-packages15:09
tmcpeakthat's where stock Apple stuff goes15:09
tmcpeakthat's what appdirs expects15:09
sigmavirus24So yeah, appdirs doesn't know about homebrew15:10
tmcpeakyeah, that seems like the bug to me too15:10
sigmavirus24The documentation points to that because for site_config_dir tells you to look at site_data_dir which says "Mac OS X:   /Library/Application Support/<AppName>"15:10
sigmavirus24because appdirs is primarily about "apps" that you'd install, e.g., Firefox, Chrome, etc.15:11
tmcpeakbut.. shouldn't data_files in pbr ensure that the bandit config is put somewhere special?15:11
sigmavirus24tmcpeak: it does15:11
sigmavirus24It puts it in the special place that *wheel* puts it15:11
sigmavirus24which iirc is /usr/local/etc15:11
tmcpeakno, it isn't15:11
tmcpeakit's putting it here15:11
tmcpeak- /usr/local/lib/python2.7/site-packages/bandit/config/bandit.yaml15:12
tmcpeakthat's literally the same place every other file is going15:12
tmcpeakthe plugins, etc15:12
openstackgerritMichael McCune proposed openstack/security-doc: Trying to add numbers and orders to commands  https://review.openstack.org/20772115:13
sigmavirus24tmcpeak: are you using Daviey's patch, because that's the behaviour on Master15:14
tmcpeakno, without Daviey's patch15:14
tmcpeakDaviey's patch breaks my system15:14
sigmavirus24tmcpeak: so we don't specify data_files in master iirc15:14
sigmavirus24package_data != data_files15:14
sigmavirus24package_data merely means "here is a non-python file that needs to be included in the package"15:15
tmcpeakyeah, you're right15:15
tmcpeakmy ignorance is showing15:15
sigmavirus24no worries15:15
sigmavirus24I'm steeped in this tarpit15:15
tmcpeakok so agreed then, doesn't seem like there is a pbr bug here15:15
tmcpeakwe should close that to not waste their cycles15:15
tmcpeakthis seems like an appdirs issue, and maybe an unsupported use case?15:15
sigmavirus24most likely unsupported usecase for appdirs15:16
sigmavirus24Then again, they might say "oh yes, that makes sense"15:16
sigmavirus24I would bet that appdirs is meant for people distributing dmg files for OSX which would likely go in /Library if built appropriately15:16
sigmavirus24Not for pip installable things15:16
tmcpeakDaviey: looks like we might need a new approach rather than use appdirs15:17
tmcpeakor you can try appdirs and just add the source path as a backup15:18
tmcpeaksigmavirus24: thanks for lending your expertise on this :)15:20
sigmavirus24More like "pain and suffering in setuptools"15:23
*** edmondsw has quit IRC15:26
*** browne has joined #openstack-security15:27
*** singlethink has quit IRC15:31
tmcpeakfortunately I've avoided the setuptools bad touch to this point15:36
*** dwyde has joined #openstack-security15:38
Davieysigmavirus24: Hmm.. data_files doesn't seem to be respected at all in tmcpeak's environment15:43
DavieyAs in, we are seeing the config file being installed with the rest of the python library15:43
Davieysigmavirus24: Are you saying that his environment is installing config files into the site-packages library path IS the right thing?15:44
sigmavirus24Daviey: installing from master -> yes it's working as intended15:44
sigmavirus24Because we're using package_data not data_files on master15:45
openstackgerritMichael McCune proposed openstack/security-doc: correcting link to attack types figure  https://review.openstack.org/20914315:45
DavieyRight.. but.. data_files isn't being respected.. is it?15:45
DavieyOn Linux, local etc is treated as - '/usr/local/etc/bandit/bandit.yaml'15:45
tmcpeakDaviey: it probably is, it's just that since your change refuses to look in the actual bandit directory I haven't tried it out15:47
Davieytmcpeak: As a fall back, i'm going to add that path.. but something which is not appdirs isn't doing its job properly15:48
tmcpeakDaviey: I believe it is just appdirs15:48
Davieytmcpeak: No, because site-packages shouldn't ever be a config file location15:49
sigmavirus24Daviey: data_files should be /usr/local/etc (if using pip)15:50
sigmavirus24(and wheels)15:51
tmcpeakDaviey: but prior to your change it wasn't using data_files15:51
sigmavirus24data_files I think has a different behaviour if you run `setup.py install`15:51
sigmavirus24Daviey: repeat after me: "package_data is not data_files"15:51
Davieytmcpeak: Yeah, but if you install from my branch.. then you should get a config file in /usr/local/etc15:51
tmcpeakok, I can verify that15:51
Davieysigmavirus24: I understand the difference between pkg_data and data_files15:51
Davieysigmavirus24: I'm not being dumb.15:52
Davieysigmavirus24: If tmcpeak did "pip install ." from my branch he should get a config file in /usr/local/etc/*15:52
sigmavirus24Right but he wasn't using your branch15:52
tmcpeakyep, it's there15:52
tmcpeak- /usr/local/etc/bandit/bandit.yaml15:53
DavieyNow i am really confused15:53
tmcpeakso data_files works15:53
tmcpeakAppdir on mac does not allow it to search in that path15:53
Davieytmcpeak: So how was my branch broken to start with?15:53
sigmavirus24Daviey: the answer here is "just use linux" for bandit15:53
DavieyHah, indeed.15:53
* sigmavirus24 is not being serious15:53
tmcpeakbecause with data_files and PBR and appdir, now the Bandit installer puts bandit.yaml in /usr/local/etc/bandit/bandit.yaml, which thanks to appdir's lack of understanding of brew python locations is not a searched path15:54
Davieytmcpeak: You were testing my branch against a bastardization install of Master?15:54
tmcpeakno, this ^15:54
Davieytmcpeak: I thought we were just seeing the config file in site-packages which was wrong15:54
tmcpeakapparently it installs it in both locations15:55
tmcpeakactually, why does it install it in both?15:55
tmcpeakthat doesn't make any sense15:55
DavieyBecause it is in the module directory of the branch15:56
Davieybandit/* is shipped as a module.. Really the config file belongs outside of the module15:56
Daviey(in git)15:56
tmcpeakahh ok15:56
tmcpeakwell thankfully it's there, otherwise brew Python is totally broken for Bandit15:57
sigmavirus24Until we have a solution for OSX users, I vote that it stays in bandit/config for now15:57
*** pdesai has joined #openstack-security15:59
tmcpeakwe should reach out to appdirs and see if they have any plans to support this use case15:59
DavieyYeah, i've started writing a bug report16:02
tmcpeakawesome, thanks Daviey16:02
DavieyI'm trying to find an equivalent of FHS for Mac16:02
tmcpeaknot opening a pdf from you and/or filibeto :P16:03
Davieytmcpeak: out of interest, does anything else have files in /usr/local/etc/ on your machine?16:03
tmcpeakyeah, ansible, libvirt, qemu, openssl, redis.. others16:04
Davieytmcpeak: Flip a coin, either rickroll or goatse.16:04
tmcpeakthere's a 15:1 exchange rate on rickroll:goatse16:04
DavieyOh interesting.  Mac spec *does* say local config should be in Library16:05
tmcpeakyeah but they aren't taking brew into account?16:05
DavieyI think brew has been exonerated.. this is pip (and friends) either doing the wrong thing by spec, OR appdirs being too too anal on spec16:08
tmcpeakyeah, fair enough16:09
*** singlethink has joined #openstack-security16:13
*** elmiko has quit IRC16:13
*** elmiko has joined #openstack-security16:16
sigmavirus24no pip is doing the right thing16:20
sigmavirus24dstanek: can confirm16:20
sigmavirus24err dstufft16:20
sigmavirus24data_files being installed in /usr/local on homebrew pythong16:21
dstufftdata_files is kind of lol16:21
dstufftit has different behaviors in different scenarios16:21
dstufftbut yes, pip should generally put it in /usr/local/etc16:21
dstufft /usr/local16:22
dstufftif something doesn't support /usr/local/etc then it doesn't really support the FHS16:23
*** alex_klimov has quit IRC16:24
dstufftdata_files is... in a distutils setup.py it'll install to sys.prefix, in a setuptools setup.py it'll install alongside the package (more like package_data), and if installing from wheel it'll isntall to sys.prefix16:24
*** elmiko has quit IRC16:25
*** elmiko has joined #openstack-security16:26
*** elmiko has quit IRC16:27
*** elmiko has joined #openstack-security16:27
*** elmiko has quit IRC16:28
*** openstackgerrit_ has quit IRC16:29
*** rmarathu has quit IRC16:29
*** elmiko has joined #openstack-security16:29
Davieydstufft: Does Mac claim to be FHS compliant ?16:32
Davieydstufft: Mac's spec seems to claim that all local configs belong in /Library/Application Support/16:32
Daviey(which isn't FHS)16:32
dstufftOh, this is on a Mac? On a Mac I don't think the guidelines let you use "etc" at all, it should be in /Library/Application Support/ yea16:32
dstufftor in ~/Library/Application Support/16:33
Davieyright.. i was talking about local system, rather than user16:33
Davieydstufft: So.. is pip being rude in trying to force FHS on it.. or is a library to return paths being anal about FHS when we poll it for config paths?16:34
Daviey(the library only returns (~)/Library/Application Support/ paths16:34
dstufftwell pip doesn't force FHS paths, it has no idea what you're putting in data_files, it's just dutifully putting whatever you put in there relative to sys.prefix16:35
DavieyAh, true.16:35
*** singleth_ has joined #openstack-security16:37
*** rmarathu has joined #openstack-security16:37
dstufftthe appdirs library that pip embedded let us specify posix paths on OSX16:39
*** singlet__ has joined #openstack-security16:40
*** singlethink has quit IRC16:41
*** dwyde has quit IRC16:41
*** edmondsw has joined #openstack-security16:42
*** singlethink has joined #openstack-security16:42
*** dwyde has joined #openstack-security16:43
*** singleth_ has quit IRC16:43
*** singlet__ has quit IRC16:44
openstackgerritEric Brown proposed openstack/bandit: Update README with latest changes  https://review.openstack.org/20917916:46
Davieydstufft: Yeah, that is what we are doing... but...16:46
Davieydstufft: Oh wait.16:46
sigmavirus24Daviey: we're not using appdirs to specify the path, we're using it to search paths16:46
Davieydstufft: what appdirs do you mean?16:46
*** pdesai has quit IRC16:47
Davieypip.utils.appdirs ?16:47
dstufftit's a forked copy of something16:47
dstufftappdirs on PyPI I think16:47
DavieyYeah, that is what we are using.. but it hardcodes Apple/Darwin to (*)/Library/16:48
DavieyTIL it is in pip aswell tho16:49
*** tkelsey has quit IRC17:01
*** shohel has quit IRC17:13
*** salv-orl_ has quit IRC17:26
openstackgerritMerged openstack/security-doc: Updating Reference - Identity  https://review.openstack.org/20805117:49
*** pdesai has joined #openstack-security17:54
*** dwyde has quit IRC18:12
*** dwyde has joined #openstack-security18:13
*** austin_laptop has joined #openstack-security18:34
austin_laptophi there; I'm curious if a release date for the next bandit release is known/estimated? there's a fix I'd really like to use, wanting to know if I should backport it to 0.12.0 or wait for a tag to come soon :)18:56
*** salv-orlando has joined #openstack-security19:10
*** webX44 has joined #openstack-security19:19
*** webX44 has left #openstack-security19:22
tmcpeakaustin_laptop we're working on getting one out this week19:22
austin_laptoptmcpeak, fantastic, thanks19:23
tmcpeakaustin_laptop 0.13.0 should have lots of goodies :D19:24
austin_laptoptmcpeak, excellent :). I was looking for https://git.openstack.org/cgit/openstack/bandit/commit/?id=c6a7f7948b7b6a8d0368c82227191640427011ff in particular19:25
tmcpeakaustin_laptop: oh right, yeah that was a good bug - I'm glad you found it19:35
*** rmarathu has quit IRC19:36
austin_laptoptmcpeak, thanks for fixing19:40
austin_laptopsaved me from having to script around it :)19:40
tmcpeakaustin_laptop: was a great catch, keep em coming :)19:42
austin_laptoptmcpeak, https://bugs.launchpad.net/bandit/+bug/148006219:44
openstackLaunchpad bug 1480062 in Bandit "Please document where to report bugs/send patches in README" [Undecided,New]19:44
sigmavirus24austin_laptop: btw19:44
sigmavirus24gentoo should have bandit properly packaged for you now19:45
austin_laptopsigmavirus24, cool19:45
sigmavirus24was actually done as of Friday night but haven't seen you since so19:45
austin_laptopsigmavirus24, yeah, I was afk past few days19:46
sigmavirus24austin_laptop: no worries19:46
austin_laptopsigmavirus24, I guess I should've sent my ebuild upstream to begin with :)19:47
sigmavirus24just a head's up that you don't need to package it yourself anymore19:47
sigmavirus24austin_laptop: no worries. As I said, the gentoo OpenStack package maintainer is a member of my team19:47
sigmavirus24It took him all of a few minutes to do it and upload it19:47
austin_laptopsigmavirus24, sure. Ah, cool19:48
austin_laptopyeah, it was a few minutes here as well, but good that I don't need to maintain anymore19:48
austin_laptopwell, until 0.13.0 comes out, at least ;)19:51
sigmavirus24He has an RSS feed for package releases19:52
sigmavirus24He's on it usually rather quickly19:52
*** WaltBarnes has joined #openstack-security19:59
*** WaltBarnes has quit IRC19:59
*** pdesai has quit IRC20:15
*** kutija_ has quit IRC20:19
*** singleth_ has joined #openstack-security20:20
*** singlethink has quit IRC20:23
*** b10n1k has joined #openstack-security20:24
*** kutija has joined #openstack-security20:28
*** jmckind has joined #openstack-security20:56
*** pdesai has joined #openstack-security20:56
austin_laptopwell, I need a custom ebuild to apply that patch, for now21:14
*** jmckind has quit IRC21:24
*** salv-orlando has quit IRC21:26
*** jmckind has joined #openstack-security21:26
*** alex_klimov has joined #openstack-security21:37
*** salv-orlando has joined #openstack-security21:38
*** b10n1k has quit IRC21:48
tmcpeakDaviey: still around?22:01
*** edmondsw has quit IRC22:02
*** jmckind has quit IRC22:02
*** dwyde has quit IRC22:12
*** singleth_ has quit IRC22:19
*** zul has quit IRC22:23
*** sigmavirus24 is now known as sigmavirus24_awa22:25
Davieytmcpeak: here22:27
*** viraptor has joined #openstack-security22:31
*** alex_klimov has quit IRC22:36
tmcpeakDaviey: where we at on that change?22:36
tmcpeakwe still going ahead and you'll add the place it is as fallback?22:36
tmcpeakwe gotta move 13 out the door :D22:36
Davieytmcpeak: yeah, i'll add it now.22:36
tmcpeakDaviey: ok cool22:36
Davieytmcpeak is the league against sleep22:37
tmcpeakdon't forget fun, I'm also against that22:37
tmcpeakDaviey: I mean you can do it tomorrow ;)22:37
tmcpeakpretty much donzo for the day22:37
tmcpeakI doubt we'd get enough reviews to move it through anywa22:38
DavieyWho am i kidding, the odds of going to bed at a reasonable hour...22:38
*** dwyde has joined #openstack-security22:38
*** bknudson has quit IRC22:44
*** dwyde has quit IRC22:54
openstackgerritDave Walker proposed openstack/bandit: Actually default to /etc/ rather than just claim  https://review.openstack.org/20345122:57
Davieytmcpeak: Could you pull that down and give it a spin?22:57
openstackgerritDave Walker proposed openstack/bandit: Actually default to /etc/ rather than just claim  https://review.openstack.org/20345122:59
tmcpeakDaviey: yeps22:59
*** sdake has quit IRC23:00
openstackgerritDave Walker proposed openstack/bandit: Actually default to /etc/ rather than just claim  https://review.openstack.org/20345123:02
tmcpeakDaviey: oh, hrmm, ok now it's using /usr/local/etc/bandit/bandit.yaml23:02
Daviey(rebase against master)23:02
Davieytmcpeak: that is what we want, right?23:02
tmcpeakoh you hardcoded it :)23:02
tmcpeakI thought you were able to calculate it in some way23:02
DavieySometimes closed source software development is so much more attractive23:03
*** voodookid has quit IRC23:03
DavieySausage Factory.23:03
tmcpeakyeah man23:03
tmcpeakI heard closed source doesn't even really have security issues23:04
tmcpeakDaviey: stupid nit, then I'm +223:05
Davieytmcpeak: I nearly did this... but then decided it was stooopid - $ python -c 'import sys ; BASE_CONFIG = "/bandit.yaml" ; print "%s/local/etc/bandit%s" %  (sys.prefix, BASE_CONFIG)'23:06
tmcpeakhaha ok as long as your call it with shell=True it should be kwalitee23:07
openstackgerritDave Walker proposed openstack/bandit: Actually default to /etc/ rather than just claim  https://review.openstack.org/20345123:08
DavieyI started working on the improved mocking desired.. but TBH, i'm scared to change anything right now and get the branch nacked.23:10
DavieyI just wanna land it now :)23:10
tmcpeakI think that is the proper course23:11
tmcpeakthere'll be plenty of time for living dangerously once 13 ships23:12
openstackgerritDave Walker proposed openstack/bandit: Actually default to /etc/ rather than just claim  https://review.openstack.org/20345123:12
Davieysorry tmcpeak, i just updated the commit message to reference that other path23:13
DavieySo another +2 pls. :)23:13
*** pdesai has quit IRC23:16
tmcpeakDaviey: thanks for all the work on this23:16
Davieytmcpeak: no, thank you for your patience with debugging it on mac - ( ‾ʖ̫‾)23:17
*** jmckind has joined #openstack-security23:22
*** jmckind has quit IRC23:23
*** jmckind has joined #openstack-security23:24
*** pillars3summit has joined #openstack-security23:25
*** dave-mccowan has quit IRC23:28
pillars3summitjoin #openstack-10123:31
*** dave-mccowan has joined #openstack-security23:32
*** pillars3summit has left #openstack-security23:33
*** pillars3summit has joined #openstack-security23:36
*** pillars3summit has quit IRC23:43
*** sdake has joined #openstack-security23:45
*** dave-mccowan has quit IRC23:47
*** sdake_ has joined #openstack-security23:48
*** jamielennox|away is now known as jamielennox23:50
*** sdake has quit IRC23:52
*** salv-orlando has quit IRC23:57

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!