Thursday, 2016-08-04

« Wednesday, 2016-08-03 Index Friday, 2016-08-05 »
*** jamielennox|away is now known as jamielennox00:01
*** ravelar has quit IRC00:02
*** sdake has quit IRC00:10
openstackgerritMerged openstack/keystone: Clean up the introductory text in the docs  https://review.openstack.org/35063900:11
*** ravelar has joined #openstack-keystone00:15
*** ravelar has quit IRC00:20
*** tonytan4ever has joined #openstack-keystone00:33
*** esp has quit IRC00:36
*** tonytan4ever has quit IRC00:38
*** haplo37__ has quit IRC00:40
*** ravelar has joined #openstack-keystone00:44
*** ravelar has quit IRC00:50
*** code-R has joined #openstack-keystone00:53
*** code-R_ has joined #openstack-keystone00:54
*** code-R has quit IRC00:57
*** esp has joined #openstack-keystone01:25
*** esp has quit IRC01:33
*** jamielennox is now known as jamielennox|away01:34
*** tqtran_ has quit IRC01:42
*** ravelar has joined #openstack-keystone01:48
*** davechen has joined #openstack-keystone01:51
*** ravelar has quit IRC01:53
*** akrzos has quit IRC01:55
*** akrzos has joined #openstack-keystone01:55
*** spzala has joined #openstack-keystone01:55
*** EinstCrazy has joined #openstack-keystone01:55
*** dmellado has quit IRC01:57
*** diazjf has joined #openstack-keystone01:57
openstackgerritRon De Rose proposed openstack/keystone: PCI-DSS Minimum password age requirements  https://review.openstack.org/34331402:00
*** spzala has quit IRC02:00
*** dmellado has joined #openstack-keystone02:02
*** richm has quit IRC02:06
stevemarahhh so much to catch up on02:15
stevemarlbragstad: whats up with the perf bot?02:15
lbragstadstevemar ?02:15
stevemarlbragstad: i left a comment on here: https://review.openstack.org/#/c/309146/ "check performance" but nothing happened02:15
patchbotstevemar: patch 309146 - keystone - Pre-cache new tokens02:15
lbragstadoooo02:15
lbragstadone sec - for some reason if you leave an event stream listening to gerrit events over a long period of time it takes a while02:16
lbragstadstevemar i'll rekick it for you02:16
stevemarlbragstad: danke02:17
*** dave-mccowan has quit IRC02:19
stevemarmordred: unicode issues with your patch :( https://review.openstack.org/#/c/344943/6/keystoneauth1/fixture/serializer.py02:25
patchbotstevemar: patch 344943 - keystoneauth - Add tests for YamlJsonSerializer02:25
*** markvoelker has joined #openstack-keystone02:26
*** ravelar has joined #openstack-keystone02:29
*** dkehn_ has quit IRC02:31
*** diazjf has quit IRC02:32
*** ddieterly has joined #openstack-keystone02:33
*** ravelar has quit IRC02:34
stevemarlbragstad: does perf bot setup memcache?02:34
*** browne1 has quit IRC02:34
lbragstadstevemar for some things yes - but it's up to whatever openstack-ansible decides to do02:35
lbragstador how osa decides to deploy keystone02:35
stevemarhmm02:35
stevemarlbragstad: i'm surprised by the validation results of https://review.openstack.org/#/c/309146/02:35
patchbotstevemar: patch 309146 - keystone - Pre-cache new tokens02:35
openstackgerritOpenStack Proposal Bot proposed openstack/keystone: Updated from global requirements  https://review.openstack.org/35088802:35
openstackgerritOpenStack Proposal Bot proposed openstack/keystoneauth: Updated from global requirements  https://review.openstack.org/35088902:35
openstackgerritOpenStack Proposal Bot proposed openstack/keystonemiddleware: Updated from global requirements  https://review.openstack.org/35089002:35
stevemartoken creation definitely took longer02:36
*** ddieterly has quit IRC02:36
stevemarbut validation should have had a noticable difference02:36
*** jamielennox|away is now known as jamielennox02:36
lbragstadinteresting02:38
lbragstadtrying again just to make sure it wasn't a fluke02:39
openstackgerritOpenStack Proposal Bot proposed openstack/oslo.policy: Updated from global requirements  https://review.openstack.org/35091302:40
openstackgerritOpenStack Proposal Bot proposed openstack/pycadf: Updated from global requirements  https://review.openstack.org/35092102:41
openstackgerritOpenStack Proposal Bot proposed openstack/python-keystoneclient: Updated from global requirements  https://review.openstack.org/35092202:41
*** dkehn_ has joined #openstack-keystone02:44
*** ravelar has joined #openstack-keystone02:50
*** itlinux has quit IRC02:54
*** itlinux has joined #openstack-keystone02:56
*** ravelar has quit IRC02:56
*** ravelar has joined #openstack-keystone03:01
*** guoshan has joined #openstack-keystone03:03
*** guoshan has quit IRC03:04
*** sdake has joined #openstack-keystone03:04
*** ravelar has quit IRC03:06
*** browne has joined #openstack-keystone03:11
*** sdake has quit IRC03:23
*** browne has quit IRC03:23
*** spedione|AWAY is now known as spedione03:24
*** spedione is now known as spedione|AWAY03:27
*** afred312_ has quit IRC03:29
*** jrist has joined #openstack-keystone03:34
openstackgerritJamie Lennox proposed openstack/keystonemiddleware: Refactor audit tests to use create_middleware  https://review.openstack.org/33697103:43
openstackgerritJamie Lennox proposed openstack/keystonemiddleware: Use oslo_messaging conf fixture  https://review.openstack.org/33697003:43
openstackgerritJamie Lennox proposed openstack/keystonemiddleware: Extract oslo_messaging specific audit tests  https://review.openstack.org/33429603:43
openstackgerritJamie Lennox proposed openstack/keystonemiddleware: Return and use an app wherever possible  https://review.openstack.org/33697203:43
openstackgerritJamie Lennox proposed openstack/keystonemiddleware: Use the mocking fixture in notifier tests  https://review.openstack.org/33429503:44
*** markvoelker has quit IRC03:46
*** sdake has joined #openstack-keystone03:50
*** ayoung has quit IRC04:08
openstackgerritMerged openstack/keystone: Retry revocation on MySQL deadlock  https://review.openstack.org/34492404:13
*** nishaYadav has joined #openstack-keystone04:14
*** julim has quit IRC04:16
*** roxanaghe has joined #openstack-keystone04:18
*** nisha_ has joined #openstack-keystone04:19
*** nishaYadav has quit IRC04:22
*** markvoelker has joined #openstack-keystone04:22
openstackgerritMerged openstack/keystone: Add schema validation to update user v2  https://review.openstack.org/34502204:26
*** markvoelker has quit IRC04:26
openstackgerritMerged openstack/keystone: Add debug logging for RevokeEvent deserialize problem  https://review.openstack.org/35080404:27
*** links has joined #openstack-keystone04:28
*** sdake has quit IRC04:37
*** ravelar has joined #openstack-keystone04:39
*** tqtran has joined #openstack-keystone04:42
*** ravelar has quit IRC04:45
*** tqtran has quit IRC04:46
*** nisha__ has joined #openstack-keystone04:49
*** nisha_ has quit IRC04:52
*** afred312 has joined #openstack-keystone04:59
*** afred312 has quit IRC05:04
*** jraju has joined #openstack-keystone05:04
*** links has quit IRC05:06
*** rcernin has joined #openstack-keystone05:16
*** markvoelker has joined #openstack-keystone05:16
*** davechen has quit IRC05:20
*** markvoelker has quit IRC05:22
*** roxanaghe has quit IRC05:26
openstackgerritMerged openstack/python-keystoneclient: Improve docs for v3 roles  https://review.openstack.org/33454605:27
*** haplo37__ has joined #openstack-keystone05:34
*** esp has joined #openstack-keystone05:35
openstackgerritMerged openstack/keystoneauth: Updated from global requirements  https://review.openstack.org/35088905:41
*** haplo37__ has quit IRC05:42
openstackgerritNisha Yadav proposed openstack/python-keystoneclient: Follow up patch for Improve docs for v3 roles  https://review.openstack.org/35099005:44
*** roxanaghe has joined #openstack-keystone05:45
*** adriant has quit IRC05:49
*** roxanaghe has quit IRC05:50
*** esp has quit IRC05:51
openstackgerritMerged openstack/keystonemiddleware: Updated from global requirements  https://review.openstack.org/35089005:52
*** maestropandy has joined #openstack-keystone05:52
openstackgerritNisha Yadav proposed openstack/python-keystoneclient: Add role functional tests  https://review.openstack.org/33511805:56
*** ravelar has joined #openstack-keystone05:57
*** afred312 has joined #openstack-keystone06:00
*** ravelar has quit IRC06:01
*** afred312 has quit IRC06:06
openstackgerritMerged openstack/pycadf: Updated from global requirements  https://review.openstack.org/35092106:08
openstackgerritMerged openstack/keystone: Updated from global requirements  https://review.openstack.org/35088806:09
*** pcaruana has joined #openstack-keystone06:10
*** itisha has quit IRC06:10
openstackgerritMerged openstack/python-keystoneclient: Updated from global requirements  https://review.openstack.org/35092206:11
*** code-R_ has quit IRC06:11
*** code-R has joined #openstack-keystone06:12
*** jaosorior has joined #openstack-keystone06:20
*** nishaYadav has joined #openstack-keystone06:26
*** nisha__ has quit IRC06:28
*** mfisch has quit IRC06:29
*** belmoreira has joined #openstack-keystone06:30
*** LamT has quit IRC06:31
*** mfisch has joined #openstack-keystone06:34
*** mfisch has quit IRC06:34
*** mfisch has joined #openstack-keystone06:34
*** tqtran has joined #openstack-keystone06:42
*** roxanaghe has joined #openstack-keystone06:46
*** tqtran has quit IRC06:47
*** jed56 has joined #openstack-keystone06:47
openstackgerritMerged openstack/oslo.policy: Updated from global requirements  https://review.openstack.org/35091306:48
*** roxanaghe has quit IRC06:50
*** tesseract- has joined #openstack-keystone06:53
*** permalac has quit IRC06:54
openstackgerrithenry-nash proposed openstack/keystone: Add the migration phase status table  https://review.openstack.org/34970306:55
*** spzala has joined #openstack-keystone06:56
openstackgerrithenry-nash proposed openstack/keystone: Add support for rolling upgrades to keystone-manage  https://review.openstack.org/34971606:56
openstackgerritNisha Yadav proposed openstack/python-keystoneclient: Improve docs for v3 credentials  https://review.openstack.org/34850606:57
*** spzala has quit IRC07:00
openstackgerrithenry-nash proposed openstack/keystone: Add contract migrations to keystone-manage  https://review.openstack.org/34993907:02
*** afred312 has joined #openstack-keystone07:02
*** code-R has quit IRC07:05
*** code-R has joined #openstack-keystone07:05
*** afred312 has quit IRC07:08
openstackgerrithenry-nash proposed openstack/keystone: Add contract migrations to keystone-manage  https://review.openstack.org/34993907:08
*** pnavarro has joined #openstack-keystone07:08
*** jpena|off is now known as jpena07:13
*** code-R_ has joined #openstack-keystone07:17
*** code-R has quit IRC07:20
*** openstackgerrit has quit IRC07:33
*** openstackgerrit has joined #openstack-keystone07:33
*** pnavarro has quit IRC07:36
*** pnavarro has joined #openstack-keystone07:38
*** mvk has quit IRC07:53
*** code-R_ has quit IRC07:56
*** markvoelker has joined #openstack-keystone07:58
*** zzzeek has quit IRC08:00
*** zzzeek has joined #openstack-keystone08:01
*** afred312 has joined #openstack-keystone08:03
*** markvoelker has quit IRC08:03
*** pnavarro has quit IRC08:07
*** afred312 has quit IRC08:08
openstackgerritDavanum Srinivas (dims) proposed openstack/keystone: [WIP] Testing latest u-c  https://review.openstack.org/31843508:10
*** jaosorior has quit IRC08:13
*** jaosorior has joined #openstack-keystone08:13
*** timonwong has joined #openstack-keystone08:14
*** nishaYadav has quit IRC08:22
*** nishaYadav has joined #openstack-keystone08:23
openstackgerritliyanhang proposed openstack/keystone: Deleted file: etc/keystone.conf.sample  https://review.openstack.org/35106008:25
openstackgerritJiong Liu proposed openstack/keystone: Delete etc/keystone.conf.sample  https://review.openstack.org/35106008:28
*** roxanaghe has joined #openstack-keystone08:34
*** roxanaghe has quit IRC08:38
*** nisha_ has joined #openstack-keystone08:41
*** nishaYadav has quit IRC08:44
*** tqtran has joined #openstack-keystone08:44
*** tqtran has quit IRC08:49
*** danpawlik has joined #openstack-keystone08:49
*** markvoelker has joined #openstack-keystone08:53
*** gb21 has joined #openstack-keystone08:55
*** markvoelker has quit IRC08:57
*** afred312 has joined #openstack-keystone09:04
*** afred312 has quit IRC09:08
*** dikonoor has joined #openstack-keystone09:14
*** xek_ has joined #openstack-keystone09:23
*** xek has quit IRC09:24
*** nk2527_ has joined #openstack-keystone09:26
*** gagehugo has quit IRC09:28
*** jaugustine has quit IRC09:28
*** nk2527 has quit IRC09:29
*** gb21 has quit IRC09:29
*** guoshan has joined #openstack-keystone09:32
*** nisha__ has joined #openstack-keystone09:37
*** nisha_ has quit IRC09:40
*** guoshan has quit IRC09:44
*** guoshan has joined #openstack-keystone09:45
*** mvk has joined #openstack-keystone09:45
*** markvoelker has joined #openstack-keystone09:47
*** gagehugo has joined #openstack-keystone09:49
*** permalac has joined #openstack-keystone09:49
*** nisha__ has quit IRC09:52
*** markvoelker has quit IRC09:52
*** afred312 has joined #openstack-keystone10:04
*** afred312 has quit IRC10:09
*** pnavarro has joined #openstack-keystone10:15
*** roxanaghe has joined #openstack-keystone10:22
*** roxanaghe has quit IRC10:26
*** chlong has quit IRC10:28
samueldmqmorning keystone10:29
marekdsamueldmq: hi, Samuel10:30
samueldmqmarekd: hey10:30
marekdsamueldmq: how are you ?10:30
samueldmqmarekd: doing well, thanks. how about you?10:30
marekdsamueldmq: not bad, i guess10:30
*** gb21 has joined #openstack-keystone10:32
*** timonwong has quit IRC10:33
*** davechen has joined #openstack-keystone10:38
*** guoshan has quit IRC10:40
*** gb21 is now known as GB2110:41
*** markvoelker has joined #openstack-keystone10:41
*** chlong has joined #openstack-keystone10:41
*** markvoelker has quit IRC10:46
*** EinstCrazy has quit IRC10:46
openstackgerritBéla Vancsics proposed openstack/keystone: Use more specific asserts in tests  https://review.openstack.org/35111810:48
*** spzala has joined #openstack-keystone10:57
*** davechen has left #openstack-keystone10:57
*** spzala has quit IRC11:01
*** GB21 has quit IRC11:01
*** GB21 has joined #openstack-keystone11:02
*** afred312 has joined #openstack-keystone11:05
dstanekmorning11:07
*** afred312 has quit IRC11:10
samueldmqdstanek: morning11:14
* breton sighs11:22
bretonmorning, keystone11:22
dstanekbreton: what's up?11:23
bretondstanek: keystoneauth raises 404. People see word `keystone` in keystoneauth and start blaming keystone.11:25
*** chlong has quit IRC11:27
dstanek:-)11:27
*** chlong has joined #openstack-keystone11:28
*** ericksonsantos has quit IRC11:34
*** raildo has quit IRC11:34
*** markvoelker has joined #openstack-keystone11:35
*** gordc has joined #openstack-keystone11:39
*** markvoelker has quit IRC11:39
*** xek__ has joined #openstack-keystone11:41
*** xek_ has quit IRC11:42
rderosedstanek: can I show the locale date/time?11:45
rderosedstanek: because I don't think showing the utc would be appropriate11:46
dstanekrderose: i'm not sure how accurate that would be, but i would hope that the request header includes the user's locale info11:48
rderosedstanek: hmm...11:48
dstanekit was just a thought.11:48
dstanekeven 'try again in X days' would be better for the user experience, although once you get down to the wire it would have to be more precise11:49
rderosedstanek: yeah, but try again in x days, I would still need to know their local time11:50
*** jpena is now known as jpena|lunch11:51
rderosedstanek: but I'll give it some thought11:51
rderosedstanek: thx11:51
*** dave-mccowan has joined #openstack-keystone11:55
dstanekrderose: why do you need their local for that? you don't use their locale to calculate days11:56
rderosedstanek: well depending on local time, you could be off by a day12:02
* dolphm is trying to figure out how best to install skype on linux...12:05
lbragstaddolphm no luck?12:05
dstanekrderose: not if the message is 'try again in two days'12:05
*** markvoelker has joined #openstack-keystone12:05
*** afred312 has joined #openstack-keystone12:06
dstanekdolphm: why would you do that to yourself?12:06
dolphmdstanek: rderose told me to12:06
dstaneki haven't used skype since M$ bought it12:07
dolphmwow, they only make a 32 bit version?12:07
dolphmdstanek: i haven't either12:07
dolphmrderose: this could take a minute http://cdn.pasteraw.com/e0t2v29c58yu63x0t4lxlg6ohpfwpm612:07
*** roxanaghe has joined #openstack-keystone12:10
openstackgerritMonty Taylor proposed openstack/keystoneauth: Add tests for YamlJsonSerializer  https://review.openstack.org/34494312:10
mordredstevemar: ^^ sorry for the test fail yesterday12:10
*** afred312 has quit IRC12:11
mordredstevemar: it was an incomplete copy over of the fixes I'd made in the shade repo. I'm rather a dummy12:11
openstackgerritMerged openstack/python-keystoneclient: Follow up patch for Improve docs for v3 roles  https://review.openstack.org/35099012:12
*** timonwong has joined #openstack-keystone12:13
*** timonwong has quit IRC12:13
*** roxanaghe has quit IRC12:15
mordreddstanek: great question - it gave me an idea for how to make that better12:18
bretoni have an idea for deprecation v2.012:21
bretonlets hide all v2.0-related docs.12:21
mordred++12:22
mordredI've been doing that for deprecated things in shade, which is a weird concept since shade doens't ever remove things ... but I absolutely remove references to the things that are old and ugly from the docs12:23
dstanekmordred: nice12:23
openstackgerritMonty Taylor proposed openstack/keystoneauth: Add tests for YamlJsonSerializer  https://review.openstack.org/34494312:25
mordreddstanek: there you go - that should be a bit nicer :)12:25
*** GB21 has quit IRC12:30
*** tqtran has joined #openstack-keystone12:45
*** raildo has joined #openstack-keystone12:48
*** tqtran has quit IRC12:50
*** pauloewerton has joined #openstack-keystone12:51
*** wanghua has joined #openstack-keystone12:53
*** jsavak has joined #openstack-keystone12:56
*** jpena|lunch is now known as jpena12:58
*** afred312 has joined #openstack-keystone13:07
*** spzala has joined #openstack-keystone13:09
*** spzala has quit IRC13:09
*** spzala has joined #openstack-keystone13:09
*** sdake has joined #openstack-keystone13:11
*** afred312 has quit IRC13:11
*** markvoelker has quit IRC13:13
*** sdake has quit IRC13:24
bknudsonwe could use <blink> for the v2 pages.13:30
*** julim has joined #openstack-keystone13:31
*** amakarov_away is now known as amakarov13:32
dimsbknudson : LOL13:36
dstanekbknudson: ++13:38
dstanekdo browsers still support that?13:39
*** ametts has joined #openstack-keystone13:45
*** jraju has quit IRC13:46
*** ddieterly has joined #openstack-keystone13:50
*** markvoelker has joined #openstack-keystone13:51
*** richm has joined #openstack-keystone13:51
*** sdake has joined #openstack-keystone13:54
*** ddieterly has quit IRC14:01
*** ddieterly has joined #openstack-keystone14:01
*** maestropandy has left #openstack-keystone14:01
*** belmoreira has quit IRC14:02
openstackgerritliyanhang proposed openstack/keystone: Update etc/keystone.conf.sample  https://review.openstack.org/35106014:02
*** edmondsw has quit IRC14:02
*** afred312 has joined #openstack-keystone14:07
*** code-R has joined #openstack-keystone14:09
*** code-R_ has joined #openstack-keystone14:11
openstackgerritRon De Rose proposed openstack/keystone: PCI-DSS Minimum password age requirements  https://review.openstack.org/34331414:11
*** afred312 has quit IRC14:12
*** jsavak has quit IRC14:14
*** code-R has quit IRC14:14
bknudsonhttp://www.daedtech.com/human-cost-tech-debt/?utm_content=buffer1e5b5&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer14:17
*** jaosorior has quit IRC14:17
stevemarrderose: all the v2 APIs :P14:19
rderosestevemar: :)14:19
rderosestevemar: are you talking about password_expires_at?14:20
stevemarrderose: oh jeez, i meant to reply to breton14:23
stevemarlate start, haven't slept in that much in a while14:23
stevemarrderose: got your email14:23
*** EinstCrazy has joined #openstack-keystone14:23
rderosestevemar: too early start for me, was up at 5 AM14:23
rderosestevemar: need to iron this out with dolph and henry14:24
stevemarrderose: the read-only mode detracting the rolling upgrade train was the first thing that crossed my mind14:24
rderosestevemar: :)14:24
rderoseyep14:24
*** afred312 has joined #openstack-keystone14:24
dolphmyeah, i need to go get coffee still14:24
stevemarif switching between R/O and R/W, then we'll need to restart keystone, which i guess is OK if you're using a balancer or haproxy14:25
rderosestevemar: true14:25
*** ravelar has joined #openstack-keystone14:27
*** diazjf has joined #openstack-keystone14:30
*** catintheroof has joined #openstack-keystone14:32
openstackgerritDavid Stanek proposed openstack/keystone: Update etc/keystone.conf.sample  https://review.openstack.org/35106014:37
openstackgerritDavid Stanek proposed openstack/keystone: Make hash_algorithms order deterministic  https://review.openstack.org/35122214:37
*** dikonoor has quit IRC14:40
*** code-R_ has quit IRC14:41
dstanekstevemar: for not sleeping you are certainly hitting the reviews quickly!14:46
stevemardstanek: ba dum tsst14:46
dstanekstevemar: baby keeping you up?14:47
*** diazjf has quit IRC14:52
stevemardstanek: some nights yes, some nights no14:52
stevemargagehugo: rebase this bad boy https://review.openstack.org/#/c/348531/ and let's get the BP completed :O14:52
patchbotstevemar: patch 348531 - keystone - Add schema validation to create user v214:52
*** yangyapeng has joined #openstack-keystone14:53
stevemargot a nice LDAP bug *with a patch from the author* up for grabs if someone is interested?! https://bugs.launchpad.net/keystone/+bug/1609653 :)14:54
openstackLaunchpad bug 1609653 in OpenStack Identity (keystone) "keystone ldap does not support Hebrew" [Undecided,New]14:54
*** yangyapeng has left #openstack-keystone14:54
*** edmondsw has joined #openstack-keystone14:54
*** code-R has joined #openstack-keystone14:55
dstanekstevemar: i guess that's better than all nights14:56
*** code-R_ has joined #openstack-keystone14:57
gagehugostevemar: currently commenting on the minproperties and it will be up14:57
*** code-R has quit IRC15:00
*** gagehugo_ has joined #openstack-keystone15:01
*** jaugustine has joined #openstack-keystone15:04
*** gagehugo_ has quit IRC15:04
*** pgbridge has quit IRC15:05
gagehugoIt's up, not sure why the bot didnt catch it15:05
stevemargagehugo: thank you sir15:06
gagehugoGage Hugo proposed openstack/keystone:15:07
gagehugoAdd schema validation to create user v215:07
gagehugo  https://review.openstack.org/#/c/34853115:07
patchbotgagehugo: patch 348531 - keystone - Add schema validation to create user v215:07
gagehugogood enough15:07
gagehugoI can remove the date if you want, old habit15:07
openstackgerritSteve Martinelli proposed openstack/keystone: Add schema validation to create user v2  https://review.openstack.org/34853115:07
stevemargagehugo, already did it for ya :P15:08
gagehugosweet15:08
stevemargagehugo: just gotta browse to the file in git and ... https://github.com/openstack/keystone/blob/master/keystone/identity/schema.py15:08
stevemaryou can see at the top: gage hugo Add schema validation to update user v215:09
*** rcernin has quit IRC15:09
stevemari can get everything i need from that, date wise15:09
gagehugostevemar: ah ok nice15:09
stevemarand the change Id, so i can look up the commit in gerrit15:09
stevemarlbragstad: odyssey4me does OSA keystone setup memcache? https://github.com/openstack/openstack-ansible-os_keystone15:10
stevemarhopefully its early enough that i can catch odyssey4me15:11
*** danpawlik has quit IRC15:11
stevemardolphm: maybe you know? ^15:11
odyssey4mestevemar the keystone role itself, no - the playbook you use to consume it should, then it will configure it15:11
stevemarodyssey4me: do you know of lbragstad's performance bot?15:12
odyssey4mestevemar I know of it - but don't know the details.15:12
stevemarodyssey4me: i'm trying to figure out if it sets up memcache: https://github.com/lbragstad/keystone-performance15:12
odyssey4mestevemar so the role is downloaded: https://github.com/lbragstad/keystone-performance/blob/master/ansible-role-requirements.yml#L2115:13
stevemaroh yeah, does that mean it's setup?15:13
odyssey4mestevemar nope - that's just like having a lib present - something needs to invoke it15:14
odyssey4melooking for the playbook15:14
stevemarodyssey4me: hmm okay15:14
stevemarodyssey4me: thank you for looking15:14
odyssey4menope - I see nothing in https://github.com/lbragstad/keystone-performance/blob/master/setup_database.yml or https://github.com/lbragstad/keystone-performance/blob/master/setup_perf_host.yml15:15
odyssey4methere should be another playbook that executes the memcache setup too15:16
stevemarodyssey4me: okay, that explains why we didn't see any improvement in a patch that the bot tested15:16
lbragstadstevemar we can add that as an issue to the project15:16
stevemarodyssey4me: which playbook is that? or is that a whole other yaml fiel?15:16
odyssey4melbragstad you could actually combine those playbooks to some degree - I see quite a bit of duplication15:17
*** ayoung has joined #openstack-keystone15:17
*** ChanServ sets mode: +v ayoung15:17
odyssey4meah, I see why you did two playbooks - you need to keystone db user created after the db is ready15:17
lbragstadeyah15:18
odyssey4meyou could add the memcache server role to the db setup playbook - just adding it as a role in the role list might be enough to make it happen15:18
stevemarlbragstad: i need some sort of validation that pre-caching tokens improves validation much more than it slows down token creation :)15:19
stevemarodyssey4me: i like hearing that15:19
*** EinstCrazy has quit IRC15:19
*** NishaYadav has joined #openstack-keystone15:19
*** NishaYadav is now known as Guest8643815:20
*** slberger has joined #openstack-keystone15:21
*** EinstCrazy has joined #openstack-keystone15:22
*** Guest86438 is now known as nisha_15:25
*** catintheroof has quit IRC15:25
*** jaugustine has quit IRC15:28
*** EinstCrazy has quit IRC15:30
*** nisha_ has quit IRC15:32
*** code-R_ has quit IRC15:33
*** arunkant_ has joined #openstack-keystone15:34
bknudsonlooking at caching some more ... here's what the keys are like: 'f342eb8d3cebaf171f30dfb2fc2ea507fc404d82', '06e5a20f6e68f2cd48de2b40a71211f2c90a6b71' , etc.15:35
knikollastevemar: i can work on the bug you mentioned over the weekend.15:35
bknudsonmaybe that's not enough entropy?15:35
stevemarknikolla: ++15:36
stevemarknikolla: assigned it to you15:36
bknudsonmaybe the reason people are seeing issues with caching is that it's getting the wrong data back due to a key clash.15:36
stevemarbknudson: :|15:37
*** ddieterly is now known as ddieterly[away]15:37
*** ddieterly[away] is now known as ddieterly15:37
knikollastevemar: cool, thanks.15:37
stevemarknikolla: it looks like they are encoding/decoding things coming from ldap, but i'm not sure we need it for "enabled"15:37
*** ddieterly is now known as ddieterly[away]15:37
stevemarhmm "if val.startswith(': '): "15:38
stevemarthat doesn't look promising15:38
knikollastevemar: it looks hackish15:38
*** nisha_ has joined #openstack-keystone15:38
stevemarknikolla: just a pinch :\15:39
bknudsonbtw - I'm hoping we will get results today from the extra logging added by https://review.openstack.org/#/c/350804/ , so thanks for merging quickly.15:39
patchbotbknudson: patch 350804 - keystone - Add debug logging for RevokeEvent deserialize problem (MERGED)15:39
*** ddieterly[away] is now known as ddieterly15:40
bknudsonif my theory is correct it should be pretty obvious that the data returned in the cache is not a revokeevent as the code expects.15:40
stevemarbknudson: np, i figured that was somehting you needed15:40
bknudsonthe mangling is in oslo.cache: return util.sha1_mangle_key(key)15:41
*** EinstCrazy has joined #openstack-keystone15:42
bknudsonmaybe there's a sha256? (or use uuid5?)15:42
bknudsonis there any other way that we could tell that the data was valid? Maybe put a marker in the value?15:44
*** pgbridge has joined #openstack-keystone15:45
*** code-R has joined #openstack-keystone15:45
bknudsonthis is what the keys look like for memoized functions before mangling: 'keystone.resource.core:get_project_by_name|demo default'15:46
*** EinstCrazy has quit IRC15:47
*** EinstCrazy has joined #openstack-keystone15:48
bknudsondogpile.cache also supports a length_conditional_mangler -- that might help? http://dogpilecache.readthedocs.io/en/latest/api.html#dogpile.cache.util.length_conditional_mangler15:49
openstackgerritAlexander Makarov proposed openstack/keystone: Trust controller refactoring  https://review.openstack.org/35126015:49
bknudsonwe could set the length to some large value that means keystone values are typically not mangled.15:49
bknudsonwell, tokens would be mangled.15:50
dstanekbknudson: values mangled or keys?15:50
bknudsondstanek: the keys are mangled.15:50
dstanekbknudson: ok, you statement above confused me a little15:51
bknudsondstanek: which one?15:51
dstanek'that means keystone values are typically not mangled'15:51
bknudsonoh, right, I meant the values passed in as the key parameter.15:52
bknudsonthe keys that keystone uses are 'keystone.assignment.core:get_role|f34386884d974f45b1d4b0ea9e383c68'15:53
bknudsonI should be able to find a token one easy enough.15:53
bknudson'keystone.token.provider:_validate_token|gAAAAABXojZX3JzEheKEpOsvBKsNGbbDjcca1QUvBrp81UOdcElU_ReTpQmWW3vWCW7OAkeesPytCPzo5-6i-Wfk0k0x5ienIJw8s2xJkGPGrIEboCc8ARWd2DEFk9-Dy36cvPC_oAt5-F09Ygd-PMUZV33IVnpmE6TrhaCxdlkOKRucO3l8Cn8'15:53
openstackgerritMikhail Nikolaenko proposed openstack/keystone: Add domain check in domain-specific role implication  https://review.openstack.org/35126415:53
dstanekso you are thinking there is a collision in the keyspace?15:53
bknudsondstanek: yes, that key gets mangled using sha1 to 95b0d01f325781d2a4aea39bc9cea1e7a6baa19315:54
bknudsonnot sure how I could prove this? takes a lot of data15:54
bknudsonwhat if some other key gets mangled to the same sha1? then you'd get the wrong data back.15:56
bknudsonthe whole point of memcache is to store a lot of keys.15:57
*** ametts has quit IRC15:57
dstaneki wonder what the probability of that is15:57
dstanekbknudson: i would make sense to keep the function part of the key and just mangle the args15:58
bknudsonoh, cool.15:58
dstanekso your example becomes 'keystone.token.provider:_validate_token|{sha}'15:59
dstanekthat would easility fit in under the max key length even with my namespace patch15:59
bknudsonshould be easy enough, just find the :15:59
bknudsonyour namespace patch changes the keys?15:59
dstanekyes, that way we can actually clear regions16:00
bknudsonbtw, I didn't know about dogpile.cache.util.kwarg_function_key_generator(namespace, fn, to_str=<type 'str'>) -- seems like that would make some of our code simpler.16:00
dstanekthere is a region specific key with a uuid value. when we store/lookup a key we prepend (or append?) that value so removing a region is just updating the region key16:01
bknudsonall the keystone instances change the key?16:02
dstanekbknudson: it's a subclass of region that forces a different key16:02
*** browne has joined #openstack-keystone16:02
dstanekhttps://review.openstack.org/#/c/349704/16:03
patchbotdstanek: patch 349704 - keystone - WIP: region namespace POC for cache invalidation16:03
bknudsonMN vs CLE about to start. 10 more runs guaranteed!16:03
*** KevinE has joined #openstack-keystone16:03
dstanekwhile you're thinking about cache i created https://review.openstack.org/#/c/350942/ too as a possible fix16:03
patchbotdstanek: patch 350942 - oslo.cache - WIP: RFC: Set item expiration in memcached16:03
*** ametts has joined #openstack-keystone16:04
*** KevinE has quit IRC16:05
*** diazjf has joined #openstack-keystone16:05
*** mdavidson has quit IRC16:05
bknudsondon't you tell memcache how much memory to use? Doesn't seem like this would have any effect on memory usage.16:07
*** dikonoor has joined #openstack-keystone16:09
*** ddieterly is now known as ddieterly[away]16:09
*** raildo has quit IRC16:10
*** raildo has joined #openstack-keystone16:12
bknudsonbrowne: you mentioned yesterday you were seeing cache issues?16:13
browneyep, until we turned off caching completely16:13
bknudsonbrowne: could the symptoms have been caused by the cache returning unexpected values? (Like values stored from the wrong key)16:14
*** nisha_ has quit IRC16:14
browneyep, definitely a lot of unexpected returned values16:14
*** pnavarro has quit IRC16:15
*** raildo has quit IRC16:15
bknudsonI'm considering the way that our cache code uses sha1 to mangle keys, wondering if there's collisions happening when lots of values stored.16:15
*** KevinE has joined #openstack-keystone16:15
*** ddieterly[away] is now known as ddieterly16:15
brownebknudson:  https://bugs.launchpad.net/keystone/+bugs?search=Search&field.bug_reporter=ericwb16:15
*** nisha_ has joined #openstack-keystone16:15
*** amakarov is now known as amakarov_away16:15
openstackgerritMonty Taylor proposed openstack/keystoneauth: Add tests for YamlJsonSerializer  https://review.openstack.org/34494316:15
*** KevinE has quit IRC16:15
mordreddstanek: yup. I suck. thank you16:16
brownebknudson:  so in our testing it only occurring when using Rally.  so the cache possibly was reacting funny once it got full16:16
*** KevinE has joined #openstack-keystone16:16
dstanekbknudson: it doesn't have too much of an effect. it may just help the lru decide a little better, but i don't think it's significant16:16
dstanekmordred: -)16:16
bknudsonbrowne: does rally get a crazy number of tokens? (Not that that should cause a problem for keystone, just wondering why this is seen using rally all the time)16:17
bknudsonwe also see our problem when using rally16:17
*** roxanaghe has joined #openstack-keystone16:17
bknudsonmaybe rally does a lot of token revocations?16:18
brownethe tracebacks started to pop up once Rally was cleaning up resources16:18
*** raildo has joined #openstack-keystone16:18
bknudsonoh, so not individual revocations just users16:18
openstackgerritMerged openstack/keystone: Use more specific asserts in tests  https://review.openstack.org/35111816:26
bretonhow many is "crazy"?16:27
bknudsonstevemar: so maybe your wish came true -- the cause for the bug I opened is the same as the other cache bugs.16:27
bknudsonbreton: keystone should be able to handle any number of tokens / revocations. Just wondering why deployments don't see this cache issue under normal operation.16:28
bretonalso, what bug are you talking about?16:29
bknudsonbreton: https://bugs.launchpad.net/keystone/+bugs?search=Search&field.bug_reporter=ericwb and https://bugs.launchpad.net/keystone/+bug/160956616:29
openstackLaunchpad bug 1609566 in OpenStack Identity (keystone) "500 error from revocation event deserialize" [High,In progress] - Assigned to Brant Knudson (blk-u)16:29
bretonbknudson: and what's in revoke_event_data?16:30
*** nisha_ has quit IRC16:30
bknudsonbreton: I haven't found out yet what the cache is actually returning16:30
bretonbknudson: there is a debug proxy in oslo.cache, have you tried using it?16:31
*** ddieterly is now known as ddieterly[away]16:32
openstackgerritMerged openstack/keystone: Use URIOpt instead of StrOpt for SAML config  https://review.openstack.org/34151416:32
bknudsonbreton: that's interesting... haven't tried it.16:32
*** kro_focused is now known as krotscheck16:32
bknudsonthis is happening in an environment where it's not easy for me to make changes.16:32
*** EinstCra_ has joined #openstack-keystone16:32
bknudsondstanek pointed to some more info where they looked at the result...16:32
bretonbknudson: [cache]debug_cache_backend, [DEFAULT]default_log_levels = oslo_cache=DEBUG16:33
bretonthat should enable it16:34
*** EinstCrazy has quit IRC16:35
dstanekand it that's not enough you can create and add your own proxies16:38
stevemarbknudson: nice - i guess?16:39
*** notmyname has joined #openstack-keystone16:40
*** ravelar has quit IRC16:43
bknudsondstanek: see any problem with switching from sha1 to sha256 for the key mangler?16:43
bknudsonit should lead to less chance of a collision.16:44
bknudsonI don't have any other guess right now what might be causing the strange behavior16:44
bknudsonshould be an easy change.16:44
bretonactually we ran rally with 100 rps and haven't seen issues like this, even when tokens were in memcache16:45
bknudsonwhat's an rp?16:45
bretonrequests per (second)16:45
bknudsonthe test that's failing for us is booting 500 instances16:46
bretonwow, nice16:46
bknudsonI don't know what browne was doing.16:46
*** tqtran has joined #openstack-keystone16:47
dstanekbknudson: no, i think that would be fine16:48
brownebknudson:  we were doing a similar boot VM test.  think it was 20 concurrent instance boots16:50
*** KevinE has quit IRC16:50
*** itisha has joined #openstack-keystone16:51
*** tqtran has quit IRC16:51
*** david-lyle has quit IRC16:53
*** david-lyle has joined #openstack-keystone16:53
*** dikonoor has quit IRC16:53
*** ddieterly[away] is now known as ddieterly16:54
brownebknudson: here's an example of v3 token with v2 service catalog16:59
brownehttp://paste.openstack.org/show/549271/16:59
*** belmoreira has joined #openstack-keystone17:00
*** diazjf has quit IRC17:01
*** flaper87 has quit IRC17:03
dstanekbrowne: i have a theory about that one17:03
bretondstanek: would love to hear17:06
dstanekbreton: trying to prove it now...just need a few minutes to get this test testing17:07
*** mvk has quit IRC17:08
openstackgerritDolph Mathews proposed openstack/keystone: Remove mention of db_sync per backend  https://review.openstack.org/35128917:09
*** permalac has quit IRC17:11
dolphmdstanek: ^ fixed your mention of db_sync in the architecture doc :P17:11
dstanekdolphm: thx, i'll take another look in a few17:12
*** belmoreira has quit IRC17:13
dolphmdstanek: question on https://review.openstack.org/#/c/350793/ as well17:22
patchbotdolphm: patch 350793 - keystone - Add rolling upgrade documentation17:22
*** daemontool has joined #openstack-keystone17:28
*** pnavarro has joined #openstack-keystone17:29
openstackgerritBoris Bobrov proposed openstack/keystone: Faster id mapping lookup  https://review.openstack.org/33929417:31
dstanekbreton: no luck. can you only reproduce that under load?17:34
dstaneksorry breton i meant browne17:34
*** Gorian_ has joined #openstack-keystone17:36
*** jpena is now known as jpena|away17:37
openstackgerritLance Bragstad proposed openstack/keystone: Fix the spelling of a test name  https://review.openstack.org/35131817:37
*** dikonoor has joined #openstack-keystone17:39
brownedstanek:  yes only under load17:46
*** spzala has quit IRC17:48
*** spzala has joined #openstack-keystone17:48
*** ddieterly is now known as ddieterly[away]17:49
*** spzala has quit IRC17:53
*** tesseract- has quit IRC17:53
*** spzala has joined #openstack-keystone17:54
*** mvk has joined #openstack-keystone17:56
*** julim has quit IRC18:02
*** ravelar has joined #openstack-keystone18:05
*** julim has joined #openstack-keystone18:05
*** tpeoples has quit IRC18:12
*** dikonoor has quit IRC18:13
*** shaleh has joined #openstack-keystone18:14
dstanekbrowne: what token format are you using in your test environment?18:15
*** tqtran has joined #openstack-keystone18:17
*** tonytan4ever has joined #openstack-keystone18:21
brownedstanek: fernet18:25
*** jaugustine has joined #openstack-keystone18:28
*** spedione|AWAY has quit IRC18:32
*** jpena|away is now known as jpena|off18:34
*** spedione|AWAY has joined #openstack-keystone18:36
*** spedione|AWAY is now known as spedione18:36
*** ayoung has quit IRC18:38
*** ddieterly[away] is now known as ddieterly18:47
*** daemontool has quit IRC18:51
*** daemontool has joined #openstack-keystone18:52
dstanekbrowne: ok, back from lunch... do you have a sample v2 token that contains a v3 catalog?18:54
*** ddieterly is now known as ddieterly[away]18:55
bretondstanek: http://paste.openstack.org/show/549271/18:56
bretondstanek: (he posted it earlier)18:56
dstanekbreton: hmmm...isn't that a v3 token?18:57
bretondstanek: > 19:59 < browne> bknudson: here's an example of v3 token with v2 service catalog18:58
dstanekbreton: ah, i was looking for the opposite18:59
*** EinstCra_ has quit IRC19:00
bknudson" MemcachedKeyCharacterError: Control/space characters not allowed (key='keystone.resource.core:get_project_by_name|Default None')" -- that's funny19:01
dstanekbknudson: yeah a space breaks the protocol19:01
*** EinstCrazy has joined #openstack-keystone19:02
dstanekalthough i don't think you can have multple args for a get...meh19:02
bknudsonseems like the way functions calls are encoded could lead to confusion.19:02
bknudsonjust putting a space between arguments.19:02
*** jaugustine_ has joined #openstack-keystone19:04
*** fifieldt has quit IRC19:07
*** slberger has quit IRC19:08
*** daemontool_ has joined #openstack-keystone19:11
*** EinstCrazy has quit IRC19:13
*** sdake_ has joined #openstack-keystone19:13
*** daemontool has quit IRC19:15
*** sdake has quit IRC19:16
bknudsonwe ran rally on the latest code but this time we hit https://bugs.launchpad.net/keystone/+bug/160039419:17
openstackLaunchpad bug 1600394 in OpenStack Identity (keystone) "ValueError: too many values to unpack" [Undecided,Incomplete]19:17
*** roxanaghe has quit IRC19:17
stevemarrally is finding a lot of bugs these days for us19:17
stevemarbknudson: i'll switch it to confirmed19:18
*** fifieldt has joined #openstack-keystone19:18
*** haplo37__ has joined #openstack-keystone19:20
dstanekbknudson: are you running against a single node?19:20
bknudsondstanek: not even close.19:20
dstanek:-)19:21
bknudsonI think we have 5 keystones.19:21
*** slberger has joined #openstack-keystone19:21
bknudsonfor some reason the team doing this testing thought that more keystones would help with the revocation list performance problem.19:21
bknudsonthey don't talk to me when they make these decisions.19:22
*** spedione has quit IRC19:22
stevemarbknudson: they don't really talk to anyone19:22
*** ddieterly[away] is now known as ddieterly19:23
bknudsonwe've got another log file that has the other error! maybe the value was logged.19:29
*** jaugustine has quit IRC19:30
*** agrebennikov has joined #openstack-keystone19:30
*** spedione|AWAY has joined #openstack-keystone19:30
*** spedione|AWAY is now known as spedione19:30
dstanekbknudson: have you tried changing the key generation already?19:32
bknudsondstanek: no, working on it.19:32
bknudsondstanek: I'm trying to be fancy and not mangle the string if it's shorter than a sha512 string.19:32
openstackgerritSteve Martinelli proposed openstack/keystone: Add schema validation to create user v2  https://review.openstack.org/34853119:33
bknudsondstanek: https://review.openstack.org/#/c/351353/19:33
patchbotbknudson: patch 351353 - oslo.cache - Use sha512 instead of sha119:33
*** mdurrant has joined #openstack-keystone19:35
dstanekeven a sha1 seems to have such a low probability of collision....this is crazy19:35
*** tonytan_brb has joined #openstack-keystone19:36
mdurrantExperiencing an interesting issue since upgrading to mitaka/master... a component we wrote for creating instances based on certain criteria is no longer authenticating to Keystone correctly.  We pull the endpoint URL from Keystone so I'm not sure where to start looking.19:36
mdurrantI can see it's trying to auth to /identity/tokens, when it should be hitting /identity/v3/auth/tokens19:37
mdurrantI checked my keystone endpoint table - everything there looks right.  Anyone know where in the code it decides to append "/auth/tokens" ?  I know at one point it was either "/auth" or "/tokens" in keystone v2.19:38
dstanekbknudson: the 'too many values' bug looks to me like it's getting unexpected data from memcached. like memcache not properly responding.19:38
bknudsondstanek: oh... hmmm.19:38
*** tonytan4ever has quit IRC19:38
dstanekbknudson: the error happens in the memcache.py library in the _expectvalue() method19:39
dstanekmdurrant: v2 is/was /tokens and v3 is /auth/tokens19:40
dstanekmdurrant: are you upgrading to mitaka or master?19:40
*** haplo37__ has quit IRC19:41
mordredstevemar: yay my stupid supposed-to-be-quick patch passed check19:43
*** jrist has quit IRC19:43
mdurrantdstanek: I'm on master now.  Can't use mitaka because mitaka's lbaas DB schema is FUBAR19:44
mdurrantproject id's were backported without requisite migrations19:44
*** mriedem has joined #openstack-keystone19:47
mriedemkeystone v2 was deprecated in mitaka right?19:48
mriedemand depecated is a valid api status right? https://wiki.openstack.org/wiki/VersionDiscovery#status19:48
mdurrantOoooooooooooooooooooo19:48
mdurrantThat very well may be the case19:48
mriedemthen why is keystone v2 still listed as supported in the api-ref? http://developer.openstack.org/api-ref/identity/v2/19:48
mriedemhttp://git.openstack.org/cgit/openstack/keystone/tree/api-ref/source/v2/index.rst#n419:49
bretonmriedem: v2.0 is not deprecated19:50
mriedemhttp://docs.openstack.org/releasenotes/keystone/mitaka.html#deprecation-notes19:50
mriedem[blueprint deprecated-as-of-mitaka]  Deprecated all v2.0 APIs. The keystone team recommends using v3 APIs  instead. Most v2.0 APIs will be removed in the ‘Q’ release. However, the  authentication APIs and EC2 APIs are indefinitely deprecated and will  not be removed in the ‘Q’ release.19:50
mriedemthere seems to be a communication breakdown here19:50
bretonoh.19:50
stevemarbreton: it sure is19:51
mriedemsomeone forgot to update the api-ref docs19:51
lbragstadyeah - i think we talked about that in japa19:51
lbragstadjapan19:51
mriedemthis is all lbragstad's fault i'm pretty sure19:51
stevemarmriedem: for sure19:51
*** melwitt has joined #openstack-keystone19:51
lbragstadmriedem wouldn't be doing my job it if wasn't :)19:51
mriedemshould i get my keystone ATC for newton?19:51
bretonok, i am surprised19:52
stevemarmriedem: do it up, so you can vote to eject me from ptl19:52
mriedemdo we even have ATCs anymore with the PTG?19:52
mriedemsweet19:52
lbragstadmriedem I'll review19:52
stevemarmriedem: you can then run for ptl so i don't have to!19:52
lbragstadstevemar you're never leaving...19:52
stevemarlbragstad: i just found a new sucker, errr replacement to take over19:53
lbragstadstevemar are we gonna see how many projects mriedem can run at once?19:53
*** rakhmerov has quit IRC19:53
* stevemar leaves for 10 minutes 19:53
stevemarhehe19:53
stevemarlbragstad: he did 2 just fine19:53
lbragstadpsh - what's a third?19:53
*** ayoung has joined #openstack-keystone19:56
*** ChanServ sets mode: +v ayoung19:56
*** jrist has joined #openstack-keystone19:57
*** rakhmerov has joined #openstack-keystone19:57
openstackgerritMatt Riedemann proposed openstack/keystone: Update the api-ref to mark the v2 API as deprecated  https://review.openstack.org/35137020:01
lbragstaddstanek do you have anything for https://review.openstack.org/#/c/349704/ locally?20:02
patchbotlbragstad: patch 349704 - keystone - WIP: region namespace POC for cache invalidation20:02
*** narengan has joined #openstack-keystone20:03
dstaneklbragstad: just lots of debugging code right now20:05
*** ametts has quit IRC20:05
lbragstaddstanek is there anything I can do to help?20:05
dstaneklbragstad: not specifically. i'm just running lots of caching tests and trying to find some patterns in the output/failures20:06
lbragstaddstanek just looping specific tests?20:06
*** ametts has joined #openstack-keystone20:10
dstaneklbragstad: i actually created some shell script too to try to induce errors. basically just a few curl commands20:11
lbragstaddstanek ah - I thought you meant using keystone tests20:12
lbragstaddstanek from your comment in keystone/__init__.py - where do you think it should live?20:13
*** markvoelker has quit IRC20:13
lbragstadkeystone/common/cache/ ?20:13
dstaneklbragstad: probably, but i have to make sure it gets patched early20:18
dstanekneed to take a dinner break soon20:22
lbragstaddstanek ok20:22
bknudsonHere's the proposed change to oslo.cache to use sha512 rather than sha1: https://review.openstack.org/#/c/351353/20:24
patchbotbknudson: patch 351353 - oslo.cache - Use sha512 when mangling keys to avoid collisions20:24
*** catintheroof has joined #openstack-keystone20:30
*** roxanaghe has joined #openstack-keystone20:32
*** pauloewerton has quit IRC20:33
*** jrist has quit IRC20:38
*** mriedem has left #openstack-keystone20:45
mdurrantWell, the solution was: update the endpoint in the service catalog to have /v3 on the end.  Suddenly things work as expected.20:45
mdurrantI would swear that somewhere in the keystone client code there is something that decides whether to append /tokens or /auth/tokens depending on the identity api ver, but I'll be darned if I know where it is.20:46
*** tonytan_brb has quit IRC20:48
bretonstevemar lbragstad: if v2 is deprecated, should we change version/controllers.py:122?20:48
openstackgerritMerged openstack/keystoneauth: Add tests for YamlJsonSerializer  https://review.openstack.org/34494320:49
*** jrist has joined #openstack-keystone20:50
mordredstevemar: ^^ woot! ksa release is now clear20:51
openstackgerritBoris Bobrov proposed openstack/keystone: Report v2.0 as deprecated in version discovery  https://review.openstack.org/35139620:52
bretonstevemar lbragstad: like this ^20:52
stevemarbreton: yeah, probably need to do that20:52
clenimarin which practical situation could ironic not to be in the service catalog?20:53
*** raildo has quit IRC20:55
openstackgerritBoris Bobrov proposed openstack/keystone: Report v2.0 as deprecated in version discovery  https://review.openstack.org/35139621:00
*** gordc has quit IRC21:13
*** ddieterly is now known as ddieterly[away]21:17
*** julim has quit IRC21:18
*** julim has joined #openstack-keystone21:18
*** adriant has joined #openstack-keystone21:23
*** julim has quit IRC21:23
*** narengan has quit IRC21:25
*** ametts has quit IRC21:26
*** spzala has quit IRC21:32
*** spzala has joined #openstack-keystone21:32
*** slberger has quit IRC21:34
*** spzala has quit IRC21:36
*** KevinE has joined #openstack-keystone21:39
*** KevinE has joined #openstack-keystone21:40
openstackgerritMerged openstack/keystone: Remove mention of db_sync per backend  https://review.openstack.org/35128921:41
*** mdurrant has quit IRC21:42
*** ayoung has quit IRC21:43
*** slberger has joined #openstack-keystone21:46
*** pnavarro has quit IRC21:48
*** ddieterly[away] is now known as ddieterly21:48
*** gagehugo_ has joined #openstack-keystone21:49
*** roxanaghe_ has joined #openstack-keystone21:59
*** roxanaghe__ has joined #openstack-keystone22:03
*** roxanaghe has quit IRC22:03
*** diazjf has joined #openstack-keystone22:05
*** roxanaghe_ has quit IRC22:06
*** diazjf has quit IRC22:17
*** ayoung has joined #openstack-keystone22:26
*** ChanServ sets mode: +v ayoung22:26
bknudsonI wrote a script that does token validate - token revoke in a loop ... now watching it slow to a crawl.22:29
*** ntpttr has quit IRC22:31
*** ntpttr has joined #openstack-keystone22:31
openstackgerritMerged openstack/keystone: Fix the spelling of a test name  https://review.openstack.org/35131822:32
*** spzala has joined #openstack-keystone22:33
*** spzala has quit IRC22:38
*** edmondsw has quit IRC22:40
*** roxanaghe has joined #openstack-keystone22:49
*** roxanaghe_ has joined #openstack-keystone22:50
*** spzala has joined #openstack-keystone22:50
*** roxanaghe__ has quit IRC22:52
*** roxanaghe has quit IRC22:53
*** ddieterly is now known as ddieterly[away]22:58
*** ddieterly[away] has quit IRC22:58
openstackgerritSam Leong proposed openstack/keystone: Force explicit COMMIT for flush expired tokens  https://review.openstack.org/35142823:05
*** ayoung has quit IRC23:06
*** code-R has quit IRC23:07
*** catintheroof has quit IRC23:13
*** code-R has joined #openstack-keystone23:14
*** code-R has quit IRC23:20
*** gagehugo_ has quit IRC23:23
*** slberger has left #openstack-keystone23:26
*** markvoelker has joined #openstack-keystone23:28
*** Gorian_ has quit IRC23:28
*** jamielennox is now known as jamielennox|away23:30
*** markvoelker_ has joined #openstack-keystone23:37
*** markvoelker has quit IRC23:41
*** jamielennox|away is now known as jamielennox23:41
*** sdake has joined #openstack-keystone23:44
jamielennoxhey stevemar, what did you used to use for an openid provider?23:45
*** EinstCrazy has joined #openstack-keystone23:45
*** catintheroof has joined #openstack-keystone23:46
*** sdake_ has quit IRC23:46
*** haplo37__ has joined #openstack-keystone23:53
*** EinstCrazy has quit IRC23:53
*** roxanaghe_ has quit IRC23:58
« Wednesday, 2016-08-03 Index Friday, 2016-08-05 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!