| *** kgriffs is now known as kgriffs|afk | 00:48 | |
| *** akanksha has joined #openstack-zaqar | 03:10 | |
| *** achanda has joined #openstack-zaqar | 04:01 | |
| *** chandankumar has joined #openstack-zaqar | 04:35 | |
| *** chandankumar has quit IRC | 04:49 | |
| *** amalagon has quit IRC | 04:52 | |
| *** JAHoagie has joined #openstack-zaqar | 05:14 | |
| *** davideagnello has joined #openstack-zaqar | 05:33 | |
| *** davideagnello has quit IRC | 05:38 | |
| *** davideagnello has joined #openstack-zaqar | 05:42 | |
| *** JAHoagie has quit IRC | 05:54 | |
| *** davideagnello has quit IRC | 06:03 | |
| *** davideagnello has joined #openstack-zaqar | 06:03 | |
| *** davideagnello has quit IRC | 06:03 | |
| *** achanda has quit IRC | 06:24 | |
| *** achanda has joined #openstack-zaqar | 06:28 | |
| *** exploreshaifali has joined #openstack-zaqar | 06:58 | |
| *** achanda has quit IRC | 07:34 | |
| *** davideagnello has joined #openstack-zaqar | 07:52 | |
| *** davideagnello has quit IRC | 07:56 | |
| *** chandankumar has joined #openstack-zaqar | 08:36 | |
| *** chandankumar has quit IRC | 08:45 | |
| *** exploreshaifali has quit IRC | 10:25 | |
| *** davideagnello has joined #openstack-zaqar | 11:29 | |
| *** davideagnello has quit IRC | 11:34 | |
| *** chandankumar has joined #openstack-zaqar | 11:51 | |
| *** chandankumar has quit IRC | 12:35 | |
| *** akanksha has quit IRC | 12:47 | |
| *** exploreshaifali has joined #openstack-zaqar | 13:37 | |
| *** exploreshaifali has quit IRC | 13:39 | |
| *** amalagon has joined #openstack-zaqar | 15:44 | |
| *** amalagon has quit IRC | 15:46 | |
| *** davideagnello has joined #openstack-zaqar | 16:03 | |
| *** chandankumar has joined #openstack-zaqar | 16:21 | |
| *** chandankumar has quit IRC | 16:39 | |
| *** exploreshaifali has joined #openstack-zaqar | 16:47 | |
| *** cpallares has joined #openstack-zaqar | 17:15 | |
| *** chandankumar has joined #openstack-zaqar | 17:48 | |
| *** achanda has joined #openstack-zaqar | 18:32 | |
| *** exploreshaifali has quit IRC | 18:53 | |
| *** cpallares has quit IRC | 19:18 | |
| *** cpallares has joined #openstack-zaqar | 19:30 | |
| *** exploreshaifali has joined #openstack-zaqar | 19:41 | |
| *** achanda has quit IRC | 19:43 | |
| *** achanda has joined #openstack-zaqar | 20:13 | |
| *** chandankumar has quit IRC | 20:14 | |
| flwang | flaper87: i have tested patch https://review.openstack.org/168283 , the notification patch still failed | 20:35 |
|---|---|---|
| flwang | flaper87: the good news is the redis driver is almost ready, I will upload a new ps today | 20:36 |
| flwang | btw, should I ask for a FFE officially? | 20:36 |
| vkmc | flwang, hey hey :) | 20:37 |
| vkmc | flwang, you have to base your changes on https://review.openstack.org/#/c/144340/ | 20:37 |
| vkmc | which is the data/control separation itself | 20:38 |
| vkmc | its really good news that the redis driver is going wel | 20:38 |
| vkmc | well* | 20:38 |
| flwang | vkmc: wow, you're here :) | 20:40 |
| flwang | vkmc: btw, would you mind me asking a Trove question at this lovely channel? :) | 20:40 |
| vkmc | yes :) hands on in the websocket thing... I guess we should send the FFE's soon | 20:41 |
| vkmc | flwang, sure, shoot! | 20:41 |
| flwang | vkmc: I was told there is a security hole for trove, the problem is the trove agent in the VM need to talk with MQ | 20:42 |
| flwang | so it will keep the mq password | 20:42 |
| vkmc | yes, that is a true problem | 20:43 |
| flwang | but if the user take a snapshot for the VM, then the password is leaking | 20:43 |
| vkmc | the auth credentials are sent to the guest through a queue | 20:43 |
| flwang | so is there any workaround for that? | 20:43 |
| vkmc | good question | 20:43 |
| vkmc | I'm honestly not sure... because the way the connection is establish is insecure by design | 20:44 |
| flwang | vkmc: I'm not really familiar with Trove, so my description maybe not accurate, but you got my point | 20:45 |
| vkmc | IMO that information should be transferred through ssh or something alike | 20:45 |
| vkmc | and its something I proposed for L cycle | 20:45 |
| flwang | that's the blocker for us to deploy Trove in our prod | 20:45 |
| vkmc | to add a way of communicating with an instance through ssh | 20:45 |
| vkmc | I see | 20:45 |
| vkmc | I'll poke other core members with more experience, they probably discussed about this in previous design sessions/meetings | 20:45 |
| flwang | vkmc: ok, cool, pls let me know if there is any process for that | 20:46 |
| vkmc | and reach you this week | 20:46 |
| flwang | vkmc: that would be super awesome | 20:46 |
| vkmc | flwang, sure :) | 20:46 |
| flwang | <3 | 20:46 |
| vkmc | certainly is a problem for all trove users | 20:46 |
| vkmc | :D | 20:46 |
| flwang | vkmc: i'm wondering if all the PaaS layer services using the same way will run into this issue, like Sahara | 20:47 |
| vkmc | well, I saw the same security bug applies for Sahara | 20:48 |
| vkmc | not sure about other services | 20:48 |
| vkmc | Murano maybe | 20:48 |
| vkmc | I'm not sure how they manage the application deployment | 20:49 |
| flwang | vkmc: wow, so my guess is true, could you pls share me the link? | 20:49 |
| vkmc | sure | 20:49 |
| *** davideagnello has quit IRC | 21:05 | |
| *** davideagnello has joined #openstack-zaqar | 21:06 | |
| vkmc | hmm, I cannot find the one for Sahara | 21:06 |
| vkmc | but this was the one in Trove https://bugs.launchpad.net/trove/+bug/1434545 | 21:06 |
| openstack | Launchpad bug 1434545 in Trove "Several command injection vulnerabilities in guestagent/pkg" [High,Triaged] | 21:06 |
| vkmc | its not related to the fact of trove using a queue to communicate with the guest though | 21:06 |
| vkmc | I'll keep looking for it, I remember seeing it | 21:06 |
| *** davideagnello has quit IRC | 21:19 | |
| vkmc | flwang, if you have a moment later, could you check out this one? https://review.openstack.org/#/c/144803/ | 21:22 |
| openstackgerrit | Victoria Martínez de la Cruz proposed openstack/zaqar: Remove sqlalchemy from our data plane https://review.openstack.org/168276 | 21:26 |
| vkmc | and that one ^ | 21:28 |
| openstackgerrit | Victoria Martínez de la Cruz proposed openstack/zaqar: Allow for internal pipelines to be defined https://review.openstack.org/168283 | 21:30 |
| openstackgerrit | Victoria Martínez de la Cruz proposed openstack/zaqar: Remove QueueController from data to control plane https://review.openstack.org/144340 | 21:30 |
| flwang | vkmc: sure, I will review them :) | 21:48 |
| vkmc | thx :) | 21:48 |
| *** achanda has quit IRC | 21:58 | |
| *** exploreshaifali has quit IRC | 22:02 | |
| *** achanda has joined #openstack-zaqar | 22:31 | |
| *** davideagnello has joined #openstack-zaqar | 22:43 | |
| *** achanda has quit IRC | 22:45 | |
| *** davideagnello has quit IRC | 22:49 | |
| *** achanda has joined #openstack-zaqar | 23:05 | |
| openstackgerrit | Merged openstack/zaqar: Remove sqlalchemy from our data plane https://review.openstack.org/168276 | 23:43 |
Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!