17:01:58 <regXboi> #startmeeting TWS Call 17:01:58 <odl_meetbot> Meeting started Mon Jun 2 17:01:58 2014 UTC. The chair is regXboi. Information about MeetBot at http://ci.openstack.org/meetbot.html. 17:01:58 <odl_meetbot> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. 17:01:58 <odl_meetbot> The meeting name has been set to 'tws_call' 17:02:07 <regXboi> #chair Madhu 17:02:07 <odl_meetbot> Current chairs: Madhu regXboi 17:02:57 <regXboi> #chair networkstatic 17:02:57 <odl_meetbot> Current chairs: Madhu networkstatic regXboi 17:03:02 * tbachman raises hand 17:03:06 <Madhu> #topic Karaf in OpenDaylight & Hands-On demo on developing ODL components for Karaf Runtime - Mathieu Lemay 17:03:08 <regXboi> #chair tbachman 17:03:08 <odl_meetbot> Current chairs: Madhu networkstatic regXboi tbachman 17:03:09 <tbachman> (to volunteer) 17:03:10 <tbachman> :) 17:04:48 <regXboi> #info we are working in the background to get mlemay's slides onto the wiki and the #link into the meeting minutes 17:05:04 <regXboi> #info regXboi thanks networkstatic for running with that item 17:05:35 <networkstatic> yessir, will get it posted in two mikes boss 17:05:41 <regXboi> :) 17:06:14 <tbachman> #info will cover Karaf, the ODL karak distribution, and hands-on demo & tips 17:06:25 <tbachman> #info s/karak/karaf/ 17:06:40 <regXboi> kayak? 17:06:46 <tbachman> lol 17:07:23 <tbachman> #info recap that Karaf is a bunch of “goodies and utiliities around an OSGi container” 17:07:32 <regXboi> #info karaf being a set of tools (console, logging, deployer, provisioning, admin, blueprint) on top of OSGi 17:08:04 * regXboi realizes some questions around logging may come down the pike later on :) 17:08:56 <regXboi> #info karaf allows for bundles to be grouped into functional units 17:09:31 <tbachman> #info It is a replacement for the distribution folders currently being used in all the projects 17:09:37 <regXboi> #info as an alternative to a param pom 17:09:45 <regXboi> #info s/param/parent/ 17:11:03 <regXboi> #info question is the code snippet part of a specific file or is it an example 17:11:25 <regXboi> #info answer: this is just an example to illustrate versioning and dependencies between features 17:11:41 <tbachman> #info Features have their own versioning 17:11:48 <regXboi> #info and how bundles are pulled together into a feature 17:11:57 <icbts> #link http://karaf.apache.org/manual/latest/users-guide/provisioning.html documentation on features 17:12:00 <regXboi> #info question: so where is this feature file from? 17:12:24 <regXboi> #info mlemay answers his preference to build it manually... 17:12:37 * regXboi now that's funny 17:12:46 * tbachman finds it midly entertaining to see his stuff in mlemay’s webex :) 17:13:00 * icbts that’s general practice for feature files 17:13:06 * regXboi resists temptation.... :) 17:13:10 <tbachman> lol 17:13:49 <regXboi> #info question: how to use karaf in a specific case (ovsdb I think) 17:14:08 <networkstatic> #link Mathieu Lemay Karaf presentation https://wiki.opendaylight.org/images/7/7e/Karaf-Discussion-TWS-June2-2014-Lemay.pdf 17:14:28 <colindixon> #link https://wiki.opendaylight.org/images/7/7e/Karaf-Discussion-TWS-June2-2014-Lemay.pdf slies that mlemay is using 17:14:46 <colindixon> (the URL has to immediately follow the #link) 17:14:48 <regXboi> #chair colindixon 17:14:48 <odl_meetbot> Current chairs: Madhu colindixon networkstatic regXboi tbachman 17:14:56 <networkstatic> ahh thanks guys 17:15:07 <regXboi> and thank you for posting, networkstatic 17:15:13 <networkstatic> wonder how long i have been screwing that up 17:15:19 <networkstatic> so many links 17:15:27 <regXboi> did anybody get the answer to Madhu's q? 17:15:30 <regXboi> I didn't parse it 17:15:33 <icbts> #link http://karaf.apache.org/manual/cave/latest/overview.html Cave overview for OBR 17:15:49 <colindixon> regXboi: nor did I 17:15:54 <networkstatic> here it comes 17:15:55 <icbts> #info API vs Impl versioning 17:16:11 <regXboi> thanks icbts 17:16:22 <icbts> #info feature dependencies vs bundle dependencies 17:16:51 <regXboi> #info can a bundle depend on a feature? answer: not clear how to do bundle-to-bundle dependencies 17:17:18 <icbts> Bundles depend on packages as per usual OSGi 17:17:32 <networkstatic> what i was thinking too 17:18:05 <icbts> ie. Bundle ABC requires JPA, you can deploy JPA feature, but its still going to need normal OSGi package wirings 17:19:18 <regXboi> #info followup Q. If one wanted to do an OVSDB feature, it could depend on other features and bundles and when the OVSDB feature is installed, then all get installed 17:19:21 <Madhu> #question if we have to use OBR, it pulls in only the API dependency bundle but not Implementation bundles. will Features help in pulling in both the API and Impl bundles 17:19:45 <networkstatic> #info feature dependencies option 1. the feature file (xml) you can "deploy" to deploy folder at runtime to take effect 17:19:45 <networkstatic> #info feature dependencies option 2. you prepackage your feature file as part of ODL (Karaf) distribution by placing it into Karaf system folder under your package. this way you can add your feature for featuresBoot. this way it will be started automatically when ODL / Karaf starts 17:19:45 <networkstatic> #info feature dependencies option 3. you load your feature file from Karaf console or via Client command from Maven repo or File 17:20:06 * icbts a features file should be written to include the API and imple bundles - or feature for API and feature impl bundles 17:21:02 <regXboi> icbts: please feel free to speak up on the call 17:21:38 <colindixon> is #question a command? regXboi, do you know? 17:21:49 <regXboi> #question 17:22:02 <regXboi> let me check the log 17:22:31 <readams> Note that in the common case, there's only ever one implementation 17:22:56 <readams> Or if there's more than one, there's likely to be a "real" implementation and a "test" implementation 17:23:11 <readams> Manually having to specify a whole dependency chain is unnecessarily painful and error-prone 17:23:21 <regXboi> #help 17:23:23 <Madhu> readams: +1 17:23:30 <regXboi> #help question 17:23:35 <regXboi> not clear colindixon 17:23:54 <colindixon> k 17:23:58 <colindixon> we’ll work it out later 17:24:11 <regXboi> let's try it both ways and see what happens 17:24:31 <readams> Valid commands for participants for meetbot are info, action, idea, help, and link 17:24:44 <readams> For chairs there's start/end meeting, topic, and agreed 17:24:55 <tbachman> and vote 17:25:27 <readams> We're using the openstack meetbot fork, which adds the vote feature 17:26:09 <Madhu> #info OBR doesn't provide automatic Feature dependency resolution. it is bundle by bundle. 17:27:45 <networkstatic> dont say "functional" today edwarnicke! you will start a religious war. 17:28:21 * regXboi notes we so need to port scan the controller 17:28:28 <networkstatic> haha 17:28:56 <networkstatic> did u see dfarrell07 messages in #opendaylight today on nmap? 17:29:05 <regXboi> no... 17:29:16 <networkstatic> he filed a bug, will link u bro 17:29:32 <regXboi> found it 17:29:34 <networkstatic> https://bugs.opendaylight.org/enter_bug.cgi?product=controller 17:29:38 * regXboi starts laughing 17:29:38 <networkstatic> oops 17:29:44 <networkstatic> bad link 17:29:45 <networkstatic> lol 17:29:58 <readams> Arbitrary code execution via unauthenticated remote socket. It's a feature? 17:30:04 <networkstatic> hahaha 17:30:45 <networkstatic> its all OOB anyways :) 17:31:19 <Madhu> #info the management features SSH console & JMX is also available in the non-karaf version using the gogo and JXM access. 17:31:27 <readams> Yes, it's important to ensure that merely gaining access to the management network instantly means complete control over everything 17:31:29 <regXboi> hard coded security? 17:31:31 <Madhu> #info but Karaf comes prepackaged with all these. 17:32:12 <networkstatic> readams lol 17:32:27 <readams> Should I start working on my ODL injectable man-in-the-middle plugin? 17:32:47 <Madhu> readams: not necessarily. RBAC is supported i believe. 17:33:06 <networkstatic> I can add some ACLs that only block TCP_SYNs to boot 17:33:18 * networkstatic wishes he was kidding 17:33:24 <regXboi> #info question: how to change users/groups/roles on the fly 17:33:25 <networkstatic> stupid state 17:33:26 <Madhu> networkstatic: man u have to sleep :) 17:33:28 <networkstatic> haha 17:33:43 <Madhu> u r sleep walking TCP flags now. 17:33:47 <regXboi> #info answer is that it either comes from the shell or via JAAS infra 17:34:01 <networkstatic> neg, now reg_load sir :) 17:34:20 <cdub> "talk a bit about ODL dependency, oh my god that's unreadable" <-- ODL dependency issues in a nutshell 17:34:34 <regXboi> cdub: +1 17:34:45 <imcharly> cdub: +1 17:35:01 <readams> We need to _simplify_, not add new layers and increase complexity 17:35:24 <cdub> readams: indeed! 17:35:55 <regXboi> colindixon: are you accusing me of being able to project? 17:35:58 <Madhu> #info. colindixon : its deafening when networkstatic and regXboi talks ;) 17:36:02 <networkstatic> hahahaha 17:36:09 <networkstatic> u know im fragile colin 17:36:15 <networkstatic> I will never talk again 17:36:18 <networkstatic> lol 17:36:35 <colindixon> it’s all good, I’ve got two ears :p 17:36:39 <networkstatic> haha 17:38:14 <networkstatic> lenrow hey sir, u still up for chatting on TWS today? 17:39:39 <regXboi> #info edwarnicke question: projects find the ability to try things out via a distribution directory. what is the correct way to maintain that ability within karaf? 17:39:48 <readams> The fact that each project needs its on distribution directory is a GIANT RED FLAG, not a feature to be preserved. It means that our module management scheme is UTTERLY BROKEN 17:40:03 <regXboi> #info answer: define a feature with a dependency on the base distro 17:40:54 * tbachman is very glad regXboi has excellent hearing :) 17:41:01 <regXboi> #info answer: alternatively, one can depend on a lightweight distribution 17:41:38 <Madhu> readams: agreed. it is causing headaches already. 17:41:56 * regXboi has his phone volume on max :) 17:42:20 <regXboi> #info more followup Qs and As on this, but nothing that appears to change the base statement 17:42:44 <edwarnicke> Madhu: Good time management :) 17:42:58 <regXboi> what's the new topic? 17:43:03 <tbachman> tenants 17:43:13 * regXboi runs screaming for the exits 17:43:39 <tbachman> I think we just lost our scribe :( 17:43:42 <tbachman> lol 17:44:24 <colindixon> sorry :p 17:44:42 <colindixon> #info networkstatic suggestsion making videos showing how to migrate to karaf 17:44:51 <colindixon> #action mlemay says he’d love to 17:44:52 <regXboi> #topic discussion of tenants 17:45:10 * colindixon just barely got that last one in (although without enough context) 17:45:32 <Madhu> mlemay: sorry about the axe :) 17:45:39 <regXboi> colindixon... #link? 17:45:39 <tbachman> #info dlenrow giving presentation on strawman proposal for tenants 17:45:56 <networkstatic> #link https://git.opendaylight.org/gerrit/#/c/6756/ Ed's Karaf commit for openflowjava 17:45:56 <colindixon> regXboi: good Q, 2 secs 17:45:59 <mlemay> Madhu: no worries.. have to be on schedule... will do screencast instead 17:46:14 <Madhu> mlemay: that would be hugely helpful 17:47:09 <regXboi> NVaaS 17:47:12 <tbachman> #info Base Assumptions: ODL should present a tenant-aware NBI, and ODL should provide NVaaS 17:47:30 <tbachman> #info NVaas: Network Virtualization as a Service 17:48:15 <tbachman> #info cdub asks about difference between proposal and Neutron API 17:48:23 <regXboi> #info Question: how is NVaaS different from neutron? 17:48:29 <tbachman> #info colindixon notes that Neutron might be a good starting point for this. 17:49:08 <regXboi> #info point of this presentation is to set down some ideas of what a tenant means 17:49:27 <regXboi> #info push back that neutron is IT centric view... 17:49:35 <tbachman> #info edwarnicke notes that tenant means different things to different people 17:50:02 <colindixon> #link https://wiki.opendaylight.org/view/File:TWS-ODL-tenancy-2014-06-02.pptx the slides being used 17:50:08 <tbachman> colindixon: thx! 17:50:13 <regXboi> thanks, colindixon 17:50:51 <tbachman> #info Tenancy in this context is an overlay 17:51:56 <readams> Do you really want to use the word "overlay" here? That sounds sounds like a uniquely poor choice of words 17:52:01 <readams> I assume you don't really mean overlay? 17:53:16 <cdub> readams: yeah, it's confusing at the least 17:53:25 <tbachman> We can call it Node insteadl 17:53:27 <tbachman> jk 17:53:37 * tbachman ducks 17:55:33 <networkstatic> overlay segments are shared in Neutron also. reality is its just a combination of various fields. 17:55:54 <networkstatic> implementation details.. 17:56:00 <regXboi> please - somebody else scribe ! 17:56:03 <regXboi> I'm going to be talking 17:56:07 <colindixon> yeah 17:56:13 <cdub> tenant is an overlay -> tenant is an abstraction? 17:56:19 <readams> Every single term of art in this presentation is misused 17:56:27 <colindixon> #info regXboi raises the question as to how this will play into the current “tenancy” and network virtualization solutions at the bottom, e.g., OpenDOVE, VTN, OVSDB 17:56:55 <tbachman> #info Madhu asks if we can use a different word than overlay 17:57:33 <cdub> that's RBAC 17:58:18 <colindixon> #info the answer w.r.t. existing tenant-oriented things is that this is more to try to have a unified construct to talk about tenants beyond virtual networks (Neutron) 17:58:56 <colindixon> cdub: RBAC isn’t hierachical 17:59:26 <readams> RBAC by itself doesn't give you what you want 17:59:35 <cdub> well, that's called hierarchical RBAC ;) 17:59:53 <readams> You need owners of resources here, which implies not pure RBAC 18:00:13 <readams> It more like an ACL or posix-style 18:00:23 <tbachman> #info colindixon notes that the way that this is different from existing tenant notions is that those are about virtual networks, 18:01:08 <tbachman> #info colindixon notes that we need a way of talking about tenancy from other perspectives, such as in the context of AAA 18:01:17 <colindixon> tbachman: thanks! 18:01:35 <cdub> #info and (for above) in the _helium_ timeframe 18:02:07 <regXboi> is AAA only northbound? 18:02:17 <regXboi> please tell me AAA isn't only northbound! 18:02:46 <edwarnicke> readams: +100000 18:03:23 <networkstatic> +1 tenant is a hash of multiple resources 18:03:32 <networkstatic> up to implementation 18:03:34 <colindixon> ok 18:03:35 <networkstatic> leave it generic 18:03:38 <readams> I think a useful definition of northbound is that AAA applies 18:03:39 <colindixon> I need to drop 18:03:41 <edwarnicke> networkstatic: Yes, of which networks may only be one example 18:03:47 <networkstatic> roger 18:04:18 <cdub> s/a hash of/a context for/ 18:06:42 <readams> regXboi: You're not going to get a complete trust model for your whole system out of a AAA subsystem 18:08:35 <regXboi> all... I need to trop 18:08:42 <regXboi> er drop ... somebody else gets to close meeting 18:09:10 <networkstatic> cya regXboi thanks buddy 18:10:37 <Madhu> #endmeeting