| mnaser | ahhhh i think i found the one | 00:28 |
|---|---|---|
| mnaser | https://bugzilla.redhat.com/show_bug.cgi?id=1939524 | 00:28 |
| opendevreview | Miguel Lavalle proposed openstack/neutron master: [DNM] Add rate-limiting to metadata agents https://review.opendev.org/c/openstack/neutron/+/858879 | 00:29 |
| opendevreview | Miguel Lavalle proposed openstack/neutron master: [DNM] Add rate-limiting to metadata agents https://review.opendev.org/c/openstack/neutron/+/858879 | 00:33 |
| opendevreview | Miguel Lavalle proposed openstack/neutron master: [DNM] Add rate-limiting to metadata agents https://review.opendev.org/c/openstack/neutron/+/858879 | 00:36 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 01:02 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 01:56 |
| opendevreview | Miguel Lavalle proposed openstack/neutron master: [DNM] Add rate-limiting to metadata agents https://review.opendev.org/c/openstack/neutron/+/858879 | 03:47 |
| opendevreview | yatin proposed openstack/neutron-tempest-plugin master: [DNM] non nested virt jammy nodes with workaround https://review.opendev.org/c/openstack/neutron-tempest-plugin/+/879036 | 04:46 |
| lajoskatona | slaweq, ralonsoh: Hi, could you please check this patch from isabek for sfc: https://review.opendev.org/c/openstack/networking-sfc/+/876944 ? Thanks in advance | 05:58 |
| ralonsoh | sure, let me check | 06:13 |
| ioni | hi guys, i was wondering if you can point me in the right direction. I want to block some ports in the default security group but I don't want that particular rule to be edited or removed unless is admin | 07:02 |
| opendevreview | Rodolfo Alonso proposed openstack/neutron master: Checkout "sqlalchemy/alembic" main branch in sqlalchmey-master jobs https://review.opendev.org/c/openstack/neutron/+/880126 | 07:02 |
| ioni | but other security groups can be attached or detached without problem | 07:02 |
| ioni | mostly I want to block outgoing 25/587 ports | 07:03 |
| ralonsoh | ioni, if a regular user has access to a network within a project, he/she will have access to add/remove rules in the default SG | 07:10 |
| ralonsoh | you can, as admin, create a network and share it | 07:10 |
| ralonsoh | if I'm not wrong, the SG used will be the default one and this SG will be owned by the admin only | 07:10 |
| ralonsoh | but, in any case, the port owner can add/remove any SG | 07:11 |
| ioni | yes, that was my understanding regarding SG as well. but i was trying to find a way, that I didn't know, to handle this case | 07:12 |
| lajoskatona | ioni, ralonsoh: I am not sure but perhaps this can be helpful if ready for ioni's problem: https://specs.openstack.org/openstack/neutron-specs/specs/2023.1/configurable-default-sg-rules.html | 07:56 |
| frickler | lajoskatona: that would only affect newly created security groups, tenants could still change those | 07:58 |
| frickler | neutron-fwaas is what used to be the solution for that issue | 07:58 |
| ioni | "Of course, those rules created by default by Neutron can be easily removed by the security group owner" | 08:07 |
| ioni | it resolves the default block ports having a template if that spec is implemented | 08:07 |
| ioni | but not the permission related to that block rule | 08:07 |
| opendevreview | Merged openstack/networking-sfc master: Use neutron-lib policy rules https://review.opendev.org/c/openstack/networking-sfc/+/876944 | 08:12 |
| opendevreview | Slawek Kaplonski proposed openstack/neutron master: [S-RBAC] Allow network owners to get ports from that network https://review.opendev.org/c/openstack/neutron/+/879891 | 08:15 |
| opendevreview | Sahid Orentino Ferdjaoui proposed openstack/neutron master: dhcp: fix network.segments condition when no segments https://review.opendev.org/c/openstack/neutron/+/880131 | 08:23 |
| opendevreview | yatin proposed openstack/neutron master: [DNM] debug ovn skip level https://review.opendev.org/c/openstack/neutron/+/878761 | 08:51 |
| opendevreview | Merged openstack/ovsdbapp master: Add new function ls_get_localnet_ports https://review.opendev.org/c/openstack/ovsdbapp/+/873853 | 09:13 |
| lajoskatona | ralonsoh: Hi, Nova has some lines for the Vancouver PTG in their etherpad: https://etherpad.opendev.org/p/nova-bobcat-ptg#L623 | 09:49 |
| lajoskatona | ralonsoh: it has some thought to have common discussion/handson for CI issues and similar, quite interesting as I see, hope many of us can be there :-) | 09:49 |
| ralonsoh | lajoskatona, nice to see that. But sorry, I have the same feeling as before: the vPTG was enough for the cycle planning | 09:50 |
| ralonsoh | plus we have the weekly meetings | 09:50 |
| ralonsoh | I'll ping gibi to check what cross meetings sessions will be needed | 09:51 |
| lajoskatona | ralonsoh: ack | 09:52 |
| slaweq | ralonsoh yet another bug related to S-RBAC: https://bugs.launchpad.net/neutron/+bug/2015987 | 10:04 |
| slaweq | I will send patch in 5 minutes | 10:04 |
| opendevreview | Slawek Kaplonski proposed openstack/neutron-lib master: Return properly elevated context by get_admin_context() helper https://review.opendev.org/c/openstack/neutron-lib/+/880143 | 10:05 |
| ralonsoh | slaweq, we'll need to backport it, right? Up to Zed | 10:05 |
| ralonsoh | and release a new n-lib version | 10:05 |
| slaweq | ralonsoh yes | 10:05 |
| slaweq | once it will be merged in u/s I will propose backports too | 10:06 |
| ralonsoh | perfect, once we have all patches merged, we'll release a new n-lib version | 10:06 |
| slaweq | thx | 10:06 |
| ralonsoh | slaweq, in L183, for consistency, do we need is_admin=True? you removed it from L179 and is set in "elevated" function | 10:08 |
| ralonsoh | --> https://review.opendev.org/c/openstack/neutron-lib/+/880143/1/neutron_lib/context.py#b181 | 10:12 |
| slaweq | of course it's not needed | 10:14 |
| slaweq | let me update it :) | 10:14 |
| slaweq | sorry | 10:14 |
| opendevreview | Slawek Kaplonski proposed openstack/neutron-lib master: Return properly elevated context by get_admin_context() helper https://review.opendev.org/c/openstack/neutron-lib/+/880143 | 10:14 |
| slaweq | done ^^ | 10:14 |
| opendevreview | Slawek Kaplonski proposed openstack/neutron-lib master: Return properly elevated context by get_admin_context() helper https://review.opendev.org/c/openstack/neutron-lib/+/880143 | 10:28 |
| opendevreview | Bence Romsics proposed openstack/neutron master: port-hints: api extension https://review.opendev.org/c/openstack/neutron/+/870081 | 11:35 |
| opendevreview | Bence Romsics proposed openstack/neutron master: port-hint-ovs-tx-steering: agent side https://review.opendev.org/c/openstack/neutron/+/872905 | 11:35 |
| opendevreview | Bence Romsics proposed openstack/neutron master: port-hint-ovs-tx-steering: shim extension https://review.opendev.org/c/openstack/neutron/+/873113 | 11:35 |
| opendevreview | Bence Romsics proposed openstack/neutron master: DNM debug logs and dev helper scripts https://review.opendev.org/c/openstack/neutron/+/872906 | 11:35 |
| opendevreview | Lajos Katona proposed openstack/neutron-dynamic-routing master: Add neutron and neutron-lib projects to SQLAlchemy main branch job https://review.opendev.org/c/openstack/neutron-dynamic-routing/+/879337 | 11:56 |
| opendevreview | Lajos Katona proposed openstack/neutron-dynamic-routing master: Add neutron and neutron-lib projects to SQLAlchemy main branch job https://review.opendev.org/c/openstack/neutron-dynamic-routing/+/879337 | 11:57 |
| opendevreview | Lajos Katona proposed openstack/networking-bgpvpn master: CI: add oslo_master and sqlalchemy to periodic weekly https://review.opendev.org/c/openstack/networking-bgpvpn/+/861960 | 12:12 |
| opendevreview | Lajos Katona proposed openstack/networking-bagpipe master: CI: Add periodic weekly job with sqlalchemy main https://review.opendev.org/c/openstack/networking-bagpipe/+/872408 | 12:15 |
| opendevreview | Lajos Katona proposed openstack/networking-sfc master: Add neutron and neutron-lib projects to SQLAlchemy main branch job https://review.opendev.org/c/openstack/networking-sfc/+/879336 | 12:24 |
| ralonsoh | mlavalle2, https://review.opendev.org/c/openstack/neutron-lib/+/880143 | 12:59 |
| ralonsoh | if you have time, we would need to backport this patch asap | 12:59 |
| mlavalle2 | ralonsoh: done | 13:05 |
| ralonsoh | thanks | 13:07 |
| opendevreview | Rodolfo Alonso proposed openstack/neutron-lib stable/2023.1: Return properly elevated context by get_admin_context() helper https://review.opendev.org/c/openstack/neutron-lib/+/880102 | 13:07 |
| opendevreview | Rodolfo Alonso proposed openstack/neutron-lib stable/zed: Return properly elevated context by get_admin_context() helper https://review.opendev.org/c/openstack/neutron-lib/+/880103 | 13:07 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 13:19 |
| opendevreview | Brian Haley proposed openstack/neutron master: Delete network namespace on last port deletion https://review.opendev.org/c/openstack/neutron/+/880006 | 14:20 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 14:30 |
| opendevreview | Merged openstack/neutron-lib master: Return properly elevated context by get_admin_context() helper https://review.opendev.org/c/openstack/neutron-lib/+/880143 | 14:42 |
| opendevreview | Merged openstack/ovn-octavia-provider stable/yoga: Add new FTs for health monitoring basic operations https://review.opendev.org/c/openstack/ovn-octavia-provider/+/876503 | 14:49 |
| opendevreview | Merged openstack/ovn-octavia-provider stable/wallaby: Add new FTs for health monitoring basic operations https://review.opendev.org/c/openstack/ovn-octavia-provider/+/876511 | 14:53 |
| opendevreview | Miro Tomaska proposed openstack/neutron master: Fix intermittent failures in finding metada port in SB DB https://review.opendev.org/c/openstack/neutron/+/878549 | 15:02 |
| opendevreview | yatin proposed openstack/neutron master: [CI][fullstack/functional] Report slowest tests https://review.opendev.org/c/openstack/neutron/+/880161 | 15:09 |
| opendevreview | Slawek Kaplonski proposed openstack/neutron master: WIP [S-RBAC] Switch to new policies by default https://review.opendev.org/c/openstack/neutron/+/879827 | 15:13 |
| opendevreview | Merged openstack/neutron master: Filter out unsatisfied routers in SQL https://review.opendev.org/c/openstack/neutron/+/842141 | 15:19 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 15:39 |
| opendevreview | Merged openstack/neutron master: Increase port name size and type to internal https://review.opendev.org/c/openstack/neutron/+/873118 | 16:06 |
| opendevreview | Rodolfo Alonso proposed openstack/networking-bagpipe master: [sqlalchemy-20] Remove subtransactions=True https://review.opendev.org/c/openstack/networking-bagpipe/+/879463 | 16:55 |
| opendevreview | Merged openstack/ovn-octavia-provider stable/zed: Add new FTs for health monitoring basic operations https://review.opendev.org/c/openstack/ovn-octavia-provider/+/876500 | 17:04 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 17:44 |
| opendevreview | Slawek Kaplonski proposed openstack/neutron-lib stable/2023.1: Return properly elevated context by get_admin_context() helper https://review.opendev.org/c/openstack/neutron-lib/+/880102 | 18:08 |
| opendevreview | Slawek Kaplonski proposed openstack/neutron-lib stable/zed: Return properly elevated context by get_admin_context() helper https://review.opendev.org/c/openstack/neutron-lib/+/880103 | 18:08 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 19:13 |
| opendevreview | Miro Tomaska proposed openstack/neutron master: Fix intermittent failures in finding metada port in SB DB https://review.opendev.org/c/openstack/neutron/+/878549 | 19:15 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 20:24 |
| opendevreview | Brian Haley proposed openstack/neutron master: OVN: Always try and create a metadata port on subnets https://review.opendev.org/c/openstack/neutron/+/879913 | 22:47 |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!