| blogan_ | phil gets asked many times for a good time, bc he goes out to smoke | 00:03 |
|---|---|---|
| rm_you| | haha | 00:05 |
| rm_you| | he should be like "I'm having a good time already, do you not see this cigarette?" | 00:05 |
| blogan_ | rm_you|: is the keystone group in the config for the communication with barbican with a service account? | 00:06 |
| rm_you| | yes | 00:08 |
| rm_you| | it was a clone of the config section from neutron proper | 00:08 |
| rm_you| | to keep things consistent | 00:08 |
| blogan_ | they use that as the group name? | 00:09 |
| blogan_ | i dont see it in their example config, though it could just be missing | 00:11 |
| *** blogan_ has quit IRC | 00:26 | |
| *** sbalukoff has quit IRC | 00:26 | |
| ptoohill_ | I did say something along those lines :P | 00:32 |
| ptoohill_ | Quite a few times actually | 00:32 |
| ptoohill_ | It's the same ones too, they dont seem to remember talking to me the night before either :P | 00:33 |
| *** sbalukoff has joined #openstack-lbaas | 00:42 | |
| *** ptoohill_ has quit IRC | 00:43 | |
| *** ptoohill_ has joined #openstack-lbaas | 00:43 | |
| *** ptoohill_ has quit IRC | 01:05 | |
| *** ptoohill_ has joined #openstack-lbaas | 01:06 | |
| *** sbalukoff has quit IRC | 01:11 | |
| *** sbalukoff has joined #openstack-lbaas | 01:30 | |
| *** ptoohill_ has quit IRC | 01:31 | |
| *** ptoohill_ has joined #openstack-lbaas | 01:32 | |
| *** sbalukoff has quit IRC | 02:35 | |
| *** ptoohill_ has quit IRC | 02:40 | |
| *** ptoohill_ has joined #openstack-lbaas | 02:59 | |
| *** ptoohill_ has quit IRC | 03:04 | |
| *** cipcosma has joined #openstack-lbaas | 06:14 | |
| *** cipcosma has quit IRC | 06:18 | |
| *** cipcosma has joined #openstack-lbaas | 06:18 | |
| *** cipcosma has quit IRC | 06:19 | |
| *** cipcosma has joined #openstack-lbaas | 06:20 | |
| *** cipcosma has quit IRC | 06:20 | |
| *** cipcosma has joined #openstack-lbaas | 06:20 | |
| *** cipcosma has quit IRC | 06:21 | |
| *** cipcosma has joined #openstack-lbaas | 06:22 | |
| *** bedis has joined #openstack-lbaas | 08:00 | |
| *** markmcclain has joined #openstack-lbaas | 08:16 | |
| *** markmcclain1 has joined #openstack-lbaas | 08:17 | |
| *** markmcclain has quit IRC | 08:20 | |
| *** xgerman has joined #openstack-lbaas | 08:23 | |
| xgerman | 15.126.203.169 | 08:23 |
| *** markmcclain1 has quit IRC | 08:39 | |
| *** markmcclain has joined #openstack-lbaas | 08:41 | |
| dougwig | xgerman: thank you | 08:51 |
| *** openstackgerrit has joined #openstack-lbaas | 09:17 | |
| *** sbalukoff has joined #openstack-lbaas | 09:32 | |
| *** markmcclain has quit IRC | 09:57 | |
| *** sbalukoff has quit IRC | 10:29 | |
| *** openstackgerrit has quit IRC | 11:46 | |
| *** xgerman has quit IRC | 12:16 | |
| *** ptoohill_ has joined #openstack-lbaas | 12:31 | |
| *** ptoohill_ has quit IRC | 12:35 | |
| *** openstackgerrit has joined #openstack-lbaas | 12:48 | |
| *** markmcclain has joined #openstack-lbaas | 13:13 | |
| *** markmcclain has joined #openstack-lbaas | 13:15 | |
| *** markmcclain has quit IRC | 13:23 | |
| *** markmcclain has joined #openstack-lbaas | 13:36 | |
| *** markmcclain has quit IRC | 13:46 | |
| *** mestery has quit IRC | 13:50 | |
| *** mestery has joined #openstack-lbaas | 13:50 | |
| *** TrevorV_ has joined #openstack-lbaas | 14:45 | |
| TrevorV_ | Hey guys how's the last day of conference going? | 14:47 |
| *** markmcclain has joined #openstack-lbaas | 15:14 | |
| *** ptoohill_ has joined #openstack-lbaas | 15:14 | |
| *** markmcclain has quit IRC | 15:19 | |
| *** ptoohill_ has quit IRC | 15:25 | |
| *** xgerman has joined #openstack-lbaas | 15:36 | |
| rm_work | oh hey xgerman has been on :P | 15:37 |
| rm_work | xgerman: watched a talk about OpenStack Security by some HP guy… need to find it again but we might want to get in touch with his group to look over our plans | 15:38 |
| TrevorV_ | rm_work, xgerman suggested that I talk with you about nova credentials being stored in BBQ (his word_ | 15:39 |
| TrevorV_ | word)*** | 15:39 |
| dougwig | when you can, let's give the next v2 review some love: https://review.openstack.org/#/c/123485/ | 15:39 |
| TrevorV_ | I'll take a gander now dougwig | 15:40 |
| dougwig | ty | 15:40 |
| rm_work | TrevorV_: the credentials we use to talk to nova? >_> | 15:40 |
| rm_work | it gets weird at the point you start dealing with frequently used config stuff | 15:41 |
| rm_work | my first instinct would be "just leave it in the config" >_> | 15:41 |
| rm_work | it COULD be stored in barbican, and fetched on service startup and then kept in memory | 15:41 |
| rm_work | but I feel like it doesn't actually buy us much | 15:42 |
| rm_work | if someone accesses the config, there'll be the credentials we use to talk to Barbican, and a secret_id for the credentials we use to talk to nova | 15:42 |
| rm_work | and honestly I am not sure why they'd be different credentials <_< we just need one service account | 15:43 |
| rm_work | it's basically impossible to get around this basic fact: we need to keep some credentials locally on the server that will allow the server to obtain the other information necessary to function (be that additional credentials, TLS certs, etc) | 15:44 |
| rm_work | either that's not really solvable with current tech, or I am not good enough with security to have the faintest idea how it could be solved, and we need to talk to some experts (which is why I was asking xgerman about HP's OpenStack Security Group) | 15:45 |
| rm_work | TrevorV: ^^ I wrote you an essay | 15:46 |
| rm_work | it wanders a bit but I think I got to the point by the end | 15:46 |
| TrevorV_ | I'm okay with config values | 15:46 |
| TrevorV_ | That's what most of Openstack uses already, I was just saying xgerman was bringing it up in my review :) | 15:46 |
| rm_work | heh | 15:46 |
| rm_work | well, there's my explanation of the issue, maybe you can distill that into a cohesive response | 15:47 |
| rm_work | s/explanation/9am brain dump/ | 15:47 |
| TrevorV_ | Were you up really early today? | 15:47 |
| rm_work | no | 15:47 |
| rm_work | i woke up at about 8:50 and got on my computer around 9 :P | 15:48 |
| TrevorV_ | Gotcha | 15:48 |
| rm_work | just been poking at Devstack | 15:48 |
| TrevorV_ | Almost the same for me | 15:48 |
| TrevorV_ | not the devstack poking though | 15:48 |
| rm_work | trying to help a guy with a really weird devstack issue | 15:48 |
| TrevorV_ | Have at it. | 15:49 |
| TrevorV_ | I'm looking into reviews apparently | 15:49 |
| openstackgerrit | Trevor Vardeman proposed a change to stackforge/octavia: Defining interface for compute drivers https://review.openstack.org/130352 | 15:52 |
| rm_work | TrevorV_: just looked at my review again, both min and mine are on master, not on anything specific to your work >_> | 16:13 |
| rm_work | not sure what you were seeing | 16:13 |
| TrevorV_ | Hmm | 16:17 |
| TrevorV_ | dougwig, I submitted a few questions for your review | 16:18 |
| rm_work | did reviews just go down? | 16:23 |
| rm_work | <_< | 16:23 |
| rm_work | getting 503 errors on everything | 16:23 |
| rm_work | ffff | 16:24 |
| TrevorV_ | I've got access rm_work | 16:24 |
| rm_work | yeah ok it's back | 16:25 |
| rm_work | holy shit this machine is slow | 16:34 |
| rm_work | <_< | 16:34 |
| openstackgerrit | Adam Harwell proposed a change to stackforge/octavia: Support for Certificate data handling https://review.openstack.org/131889 | 16:40 |
| *** jorgem has joined #openstack-lbaas | 16:50 | |
| openstackgerrit | Adam Harwell proposed a change to stackforge/octavia: Barbican implementation for Certificates https://review.openstack.org/132580 | 17:19 |
| openstackgerrit | Adam Harwell proposed a change to stackforge/octavia: Local development implementation for Certificates https://review.openstack.org/132578 | 17:23 |
| rm_work | whelp, tickets are now super expensive to get to Seattle in time for the hackathon :( | 17:28 |
| rm_work | since they moved it back a week | 17:28 |
| rm_work | so it's now only 3 weeks out | 17:28 |
| rm_work | may no longer be feasible for me to go | 17:28 |
| rm_work | anywho, reviews updated, brb loonch | 17:36 |
| TrevorV_ | I can't afford it on my own dime :( | 17:50 |
| *** ajmiller has quit IRC | 17:53 | |
| *** ajmiller has joined #openstack-lbaas | 17:54 | |
| *** mwang2 has joined #openstack-lbaas | 17:55 | |
| *** kobis has joined #openstack-lbaas | 18:00 | |
| xgerman | dougwig: dinner? | 18:04 |
| *** rm_mobile has joined #openstack-lbaas | 18:11 | |
| *** kobis has quit IRC | 18:16 | |
| *** openstackgerrit has quit IRC | 19:04 | |
| bedis | still in Paris ? | 19:21 |
| TrevorV_ | bedis, most people are coming back over the weekend, and I'd expect most people be available Tuesday, rather than Monday, just to be safe | 19:38 |
| bedis | Don't forget to visit Versailles | 19:42 |
| bedis | :) | 19:43 |
| *** mwang2_ has joined #openstack-lbaas | 19:44 | |
| *** mwang2 has quit IRC | 19:44 | |
| *** rm_mobile| has joined #openstack-lbaas | 19:45 | |
| *** rm_mobile has quit IRC | 19:47 | |
| *** openstackgerrit has joined #openstack-lbaas | 20:14 | |
| *** sbfox has joined #openstack-lbaas | 20:16 | |
| *** xgerman has quit IRC | 20:26 | |
| *** rm_mobile| has quit IRC | 20:28 | |
| TrevorV_ | rm_work, you around? | 20:32 |
| TrevorV_ | rm_you|, YOU around? | 20:36 |
| *** jorgem has quit IRC | 20:39 | |
| rm_work | TrevorV_: yes | 20:43 |
| openstackgerrit | Adam Harwell proposed a change to stackforge/octavia: Local development implementation for Certificates https://review.openstack.org/132578 | 20:47 |
| *** TrevorV_ has quit IRC | 20:56 | |
| openstackgerrit | Trevor Vardeman proposed a change to stackforge/octavia: Nova virtual machine driver implementation https://review.openstack.org/133108 | 20:56 |
| *** bedis has quit IRC | 21:46 | |
| *** cipcosma has quit IRC | 22:13 | |
| *** ptoohill_ has joined #openstack-lbaas | 22:59 | |
Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!