Tuesday, 2018-04-10

*** namnh has joined #openstack-barbican02:08
*** sapcc-bot1 has joined #openstack-barbican02:09
*** dave-mccowan has joined #openstack-barbican02:12
*** sapcc-bot has quit IRC02:14
*** liujiong has joined #openstack-barbican02:18
liujiongdave-mccowan: could you also check this out? https://review.openstack.org/#/c/553722/ https://review.openstack.org/#/c/558684/02:39
*** dave-mccowan has quit IRC02:48
openstackgerritMerged openstack/castellan master: add lower-constraints job  https://review.openstack.org/55535702:59
alee#startmeeting barbican03:00
openstackMeeting started Tue Apr 10 03:00:09 2018 UTC and is due to finish in 60 minutes.  The chair is alee. Information about MeetBot at http://wiki.debian.org/MeetBot.03:00
openstackUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.03:00
*** openstack changes topic to " (Meeting topic: barbican)"03:00
openstackThe meeting name has been set to 'barbican'03:00
alee#topic roll call03:00
*** openstack changes topic to "roll call (Meeting topic: barbican)"03:00
liujionghi alee03:00
aleeHi Jeremy :)03:00
aleenamnh, joining?03:01
aleehi namnh :)03:01
aleeanyone else joining today?03:02
liujionghi namnh03:02
namnhhi alee, liujiong03:02
alee#topic rocky03:02
*** openstack changes topic to "rocky (Meeting topic: barbican)"03:02
aleeso we have milestone 1 coming up next week03:03
aleenext week Monday to be precise03:03
aleeso I need to get together with dave this week and figure out what I'm supposed to do to cut the release03:03
liujiongalee: what's exactly "Update policy in code wiki page if done" ?03:04
aleewe already implemented policy in code, there is a wiki page to track that for each of the projects03:04
aleewhen dave and I looked, it had not been updated03:05
aleeso I need to verify and update it03:05
aleeI'm pretty sure there is not much more to do there.03:05
liujiongok, understand. That goal is "policy and docs in code", and we only have "policy in code"03:05
aleeah, ok - then we will need to do more in milestone 2 to complete then03:06
liujiongThe description of each policy should be added into code as well. But that's pretty complicated for barbican.03:06
aleethere is also some work that has been done to add read-only roles03:07
aleeI think we already have that - but we need to see if we can align with what the keystone folks are doing03:07
aleeie. we already have an "observer" role, but I'm not sure thats what the read-only role is called03:08
aleeso describing the policy in code maybe something that we fold into that at the same time03:08
aleelet me add that to the milestone 2 list03:09
liujiongsounds reasonable03:09
liujiongI want to help but I'm not so sure about all policies :(03:10
aleeI think we'll be learning together :)03:10
aleeliujiong, if you'd like to work on it, I can pair you with a keystone guy to iron out what needs to be done.03:11
aleeliujiong, or I can try work with you on it.03:11
liujiongabout "read-only role"?03:12
aleeliujiong, yup - and docing policy03:12
aleeliujiong, just sign up on the etherpad if you can do it03:12
liujiongI will03:13
aleeliujiong, thanks -- I need dave to look at your mutable patch.  I'll bug him about that tommorow03:13
liujiongoh, that patch is already +w by dave03:13
aleeas well as check on his milestone 1 patches03:13
aleeeven better :)03:13
aleeNot sure if I'll get the pycrypto change in this week -- may end up being early next week.03:14
aleeI have a change to make the keystone listener work which I'd like to get in instead ..03:15
liujiongNice, I'm keeping an eye on your patch03:15
aleeyeah -- the fix is easy -- testing it is tricky03:15
aleeright now trying to figure out how to query the db03:16
aleeto see if the relevant project is there.03:17
aleeif you happen to see what I'm doing wrong -- please let me know.03:17
liujiongok, will have a look at that patch03:18
aleethe other thing I'm going to try and do is write a spec for the castellan/vault plugin03:18
liujiongwill that be made for Rocky?03:19
aleeI wrote a patch, but there were some design decisions that are probably best iterated over a spc03:19
aleeyes, I wasnt  to try and get that in03:19
aleeideally for milestone 203:19
aleeI think folks really want to use vault.  and so having it behind barbican will be really helpful03:20
openstackgerritMerged openstack/barbican master: Enable mutable config in Barbican  https://review.openstack.org/55633703:20
aleeand if we can have a gate that does that - that will be super useful03:20
aleenamnh, how are the OVO patches?03:21
aleeare they all ready for review?03:21
openstackgerritNam Nguyen Hoai proposed openstack/barbican master: [WIP] Implement OVO for Barbican [5]  https://review.openstack.org/50024403:22
aleeI see there are a bunch of them - so we probably need to start on them soon to get them all in by milestone 203:22
namnhyeah, i think those two patch sets: https://review.openstack.org/#/c/499004/ https://review.openstack.org/#/c/559014/03:22
aleenamnh, can you remove the WIP label ? its hard to know that these are "ready"03:23
namnhyes, i will do it and i will push new patch on OVO [1] to get "Initial OVO" as parent.03:24
aleenamnh, OK cool - I'll review once I know which ones and in which order03:25
aleeanything else about rocky and next weeks milestone?03:25
liujiongnamnh: ping me or leave a comment in your patch to let us know they are ready for review03:26
namnhliujiong, alee. could you help me to review the above patch set: first: https://review.openstack.org/#/c/559014/ then https://review.openstack.org/#/c/499004/03:26
namnhliujiong: thanks :)03:26
liujiongok, no problem03:26
aleenamnh, cool - looks like a good place to start03:26
namnhi am trying to split small patch set to be easy for reviewing03:27
aleenamnh, much appreciated :)03:27
aleeI'll check with dave , but I think the process of cutting a release is pretty straightforward.  I'll plan on working on it either sunday or monday of next week03:28
aleeso lets try to get all in before then.03:28
alee#topic launchpad migration03:29
*** openstack changes topic to "launchpad migration (Meeting topic: barbican)"03:29
namnhalee: sure,03:29
aleewith no objections, I'll plan on doing this after milestone 103:29
aleelaunchpad -> storyboard03:30
aleehopefully it will all go smoothly -- in fact, I kinda hope kendall has done most of the work for us :)03:30
aleewill send email out when its done.03:31
alee#topic anything else?03:31
*** openstack changes topic to "anything else? (Meeting topic: barbican)"03:31
liujiongthat's all for me03:31
namnhme too03:32
aleecool - thanks for joining , guys -- till next week03:32
*** openstack changes topic to "Discussion about development of OpenStack Barbican and its client libraries. - Logs: http://eavesdrop.openstack.org/irclogs/%23openstack-barbican/"03:32
openstackMeeting ended Tue Apr 10 03:32:29 2018 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)03:32
openstackMinutes:        http://eavesdrop.openstack.org/meetings/barbican/2018/barbican.2018-04-10-03.00.html03:32
openstackMinutes (text): http://eavesdrop.openstack.org/meetings/barbican/2018/barbican.2018-04-10-03.00.txt03:32
openstackLog:            http://eavesdrop.openstack.org/meetings/barbican/2018/barbican.2018-04-10-03.00.log.html03:32
namnhthanks alee liujiong03:32
*** pcaruana has joined #openstack-barbican04:06
*** strigazi has quit IRC04:11
*** strigazi has joined #openstack-barbican04:14
*** pcaruana has quit IRC04:16
*** annp has quit IRC04:25
*** annp has joined #openstack-barbican04:25
*** strigazi_ has joined #openstack-barbican05:13
*** strigazi has quit IRC05:17
*** jaosorior has quit IRC06:04
*** namnh has quit IRC06:18
*** jaosorior has joined #openstack-barbican06:37
*** pcaruana has joined #openstack-barbican06:40
*** livelace has joined #openstack-barbican07:22
*** jaosorior has quit IRC07:23
*** jaosorior has joined #openstack-barbican07:27
openstackgerritJeremy Liu proposed openstack/barbican master: Add os-testr as test dependency  https://review.openstack.org/55993607:33
*** pbourke has joined #openstack-barbican08:35
*** pcaruana has quit IRC09:04
*** salmankhan has joined #openstack-barbican09:09
*** salmankhan1 has joined #openstack-barbican09:10
*** salmankhan has quit IRC09:13
*** salmankhan1 is now known as salmankhan09:13
*** liujiong has quit IRC09:17
*** strigazi_ is now known as strigazi10:01
*** pbourke has quit IRC10:30
*** strigazi is now known as strigaz_10:59
*** strigaz_ is now known as strigazi_10:59
*** strigazi_ is now known as strigazi10:59
*** salmankhan has quit IRC11:07
*** salmankhan has joined #openstack-barbican11:09
*** abishop has quit IRC11:33
*** openstackgerrit has quit IRC12:04
*** raildo has joined #openstack-barbican12:17
*** dave-mccowan has joined #openstack-barbican12:19
*** salmankhan has quit IRC12:39
*** salmankhan has joined #openstack-barbican12:39
*** pcaruana has joined #openstack-barbican12:44
*** jaosorior has quit IRC12:50
*** zhurong has joined #openstack-barbican12:59
*** abishop has joined #openstack-barbican13:12
*** zhurong has quit IRC13:13
*** pbourke has joined #openstack-barbican13:20
*** pbourke has quit IRC13:21
*** pbourke has joined #openstack-barbican13:21
*** alee has quit IRC13:39
*** DuncanT has quit IRC14:04
*** jvrbanac has quit IRC14:04
*** DuncanT has joined #openstack-barbican14:04
*** portdirect has quit IRC14:19
*** portdirect has joined #openstack-barbican14:19
*** alee has joined #openstack-barbican14:20
*** salmankhan has quit IRC14:24
*** beisner has quit IRC14:24
*** beisner has joined #openstack-barbican14:24
*** salmankhan has joined #openstack-barbican14:43
*** salmankhan has quit IRC14:52
*** salmankhan has joined #openstack-barbican15:01
*** pbourke has quit IRC17:05
*** salmankhan has quit IRC17:08
*** openstackgerrit has joined #openstack-barbican17:15
openstackgerritMerged openstack/python-barbicanclient master: Supress client debug messages  https://review.openstack.org/55372217:15
openstackgerritAde Lee proposed openstack/barbican master: Initialize db for Barbican Keystone listener  https://review.openstack.org/55706717:15
*** annp has quit IRC17:17
*** annp has joined #openstack-barbican17:18
*** openstackgerrit has quit IRC17:34
*** jaosorior has joined #openstack-barbican17:50
*** openstackgerrit has joined #openstack-barbican18:13
openstackgerritMerged openstack/barbican master: Remove unused broker configuration in devstack  https://review.openstack.org/55868418:13
*** pbourke has joined #openstack-barbican18:18
*** jaosorior has quit IRC18:48
openstackgerritAde Lee proposed openstack/barbican master: Initialize db for Barbican Keystone listener  https://review.openstack.org/55706718:56
*** openstackgerrit has quit IRC19:04
*** pbourke has quit IRC19:50
*** pcaruana has quit IRC20:01
aleedave-mccowan, ping20:07
*** abishop has quit IRC20:29
*** raildo has quit IRC20:44
*** jmlowe_ has joined #openstack-barbican21:09
jmlowe_I need a hint, I can't seem to get the dogtag plugin working keep getting "NSPRError: (SEC_ERROR_BAD_DATABASE) security library: bad database"21:09
dave-mccowanalee pong21:18
aleejmlowe_, would be happy to help you but I have to head back home .. will be online later tongiht and tommorow21:21
jmlowe_ok, thanks! I'll stick around +/- laptop falling asleep21:21
aleejmlowe_, it probably means your nss certdb is not set up[21:22
aleedave-mccowan, any idea what I'm doing wrong here ..21:22
aleedave-mccowan, http://logs.openstack.org/67/557067/16/check/barbican-simple-crypto-devstack-functional/acaec6d/job-output.txt.gz#_2018-04-10_19_29_43_50925321:23
aleedave-mccowan, same deal - back online in a little bit21:26
dave-mccowanalee ok.  that's new to me.  only guess is keystone listener is trying to init something already inited?21:27
aleedave-mccowan, well no -- what I'm trying to do is to connect to the db and see the internal barbican project there.21:28
aleedave-mccowan, then I delete the external project -- and if the listener is working, it will trigger a delete of the internal project in barbican21:29
aleedave-mccowan, the init there is supposed to be my connection (as a client) to the db21:29
*** alee has quit IRC21:49
*** alee has joined #openstack-barbican22:20
*** dave-mccowan has quit IRC22:49
*** livelace has quit IRC22:50
jmlowe_I may have lurched forward "MissingArgumentError: Must supply non-None value argument for SecretStoreMetadatum entry"23:27

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!