[00:07:11] tgr: https://graphite.wmflabs.org/dashboard/#BetaClusterAuth [01:19:26] ori: is the use of register_shutdown_function() flakey in HHVM? I'm remembering some conversation but possibly not correctly [03:29:35] bd808: did github ever respond about API limits? [03:30:24] yeah, I updated the ticket. TL;DR they said no [03:31:27] Oh missed that. I'll keep working on the MITM proxy then [03:32:32] I thought about making a github account just to use the token from and exporting that to everyone. :/ [03:32:43] raises the limit to 5K/hr [03:33:11] On the CI slaves too? [03:33:35] what's the context? this sounds interesting [03:34:17] https://phabricator.wikimedia.org/T106452 [03:36:00] reverse proxy? [03:36:15] oh right, that's what legoktm is suggesting above [03:36:15] legoktm: are we not already using an oauth token on the CI slaves? [03:37:13] Nope [03:37:26] that should be an easy fix [03:37:35] composer config -g github-oauth.github.com [03:37:49] And run that on all slaves? [03:38:00] I guess... [03:38:10] yeah, just bake it into the job [03:38:29] Err, what job? [03:38:49] well whatever triggers composer? [03:39:09] bbl sorry, [03:39:13] but it only needs to happen once so we could use puppet to ensure [03:41:21] why are we hitting the github api? to get the latest version of some repo? [03:41:42] it's how composer downloads packages [03:41:51] via the export api [03:43:21] so when we use composer to for example install phpunit to run the tests for CDB it will call out to packagist, then look in cache for the tarball and then fetch from github api on miss [03:44:07] most of the time we are fine, but when a new phpunit version gets released we sometimes hit the limit [03:44:47] plus these 60req/hr are shared across all labs users who hit that ip [03:45:10] so gawd knows what happens in labs normally [03:45:28] tools installing things, vms installing things, etc [03:45:36] yeah [03:46:04] the oauth token fix is easy... once you know about it. [03:46:26] but getting a token for our ci servers is a bit sketchy [03:46:38] if we care about github terms of use [03:47:05] because they are very clear on no bots and no shared accounts and 1 account per human [03:47:23] (not that everyone doesn't violate that) [03:48:03] the composer cache directory should be located outside the build directory, probably [03:48:21] they are I think. [03:48:40] one per CI slave [03:49:37] github's terms of service are kind of gross :/ [03:50:39] one of the terms is that they can dump any infringement suit on you and you have to pay for it and cover github's ass [03:54:15] yeah. [03:55:23] "Your login may only be used by one person - a single login shared by multiple people is not permitted." "One person or legal entity may not maintain more than one free account." [03:55:35] those two make the CI use case sketchy [03:55:59] although it is commonly done in .travis.yml files [03:59:30] heh. here's a whole pile of tokens -- https://github.com/search?utf8=%E2%9C%93&q=github-oauth+extension%3Ayml+path%3A%2F&type=Code&ref=searchresults [04:00:06] man of which seem to be "fa354b2f030836334eac842f8fd69a03e353d247" [04:01:54] I'm trying to build hhvm locally. my laptop may melt through my jeans at any time now [04:35:18] bd808: hmm, I think we might have given up the github TOS...all gerrit admins who create gerrit repos also create them on github using ^d's oauth token [04:36:29] I think according to the TOS that's ok, it just means that ^d is the legally responsible party for everything that is mirrored to github by gerrit :/ [04:37:11] haha [04:37:28] that's what their no-bots clause is really about, no entities we can't pass responsibility to [16:13:19] Hello everyone. I am a javascript deveoloper and want to contribute to mediawiki. Can you guide me where to start? [16:14:55] SaptakS: https://www.mediawiki.org/wiki/How_to_become_a_MediaWiki_hacker and the #mediawiki and #wikimedia-dev irc channels are good places to start [16:15:21] This channel is kind of a leftover from from a WMF team that no longer exists [16:15:34] (although 51 people are still here :) ) [16:15:44] core cabal! [16:16:12] -dev doesn't seem like the right place to me. I haven't been on #mediawiki myself. [16:16:35] I guess -dev might be the right place, but I haven't seen any of that kind of traffic on it since I have been on it [16:16:57] it's a hot bed of bot noise [16:17:03] -dev that is [16:17:09] I actually keep trying to leave -core but my bouncer keeps dragging me back in. I just can't quit core. [16:17:29] we are the center of the internet [17:04:05] AaronSchulz: did you see the follow up comments on https://gerrit.wikimedia.org/r/#/c/225013/3/includes/CentralAuthUser.php,cm ? [17:05:08] greg-g: my current hunch is that SUL will fix itself once the new branch hits Wikipedias [17:05:27] wow, gerrit looks different [17:06:00] legoktm: that was already fixed a while back [17:06:08] legoktm: you created sentient software?! [17:06:47] AaronSchulz: uh, link to patch? [17:07:17] that purge line is now <<$this->clearLocalUserCache( $wikiName, $id );>> [17:07:36] git blame says Ie1ffd645400396658227f2bb98a544119e0aa252 [17:08:56] oh, your patch wasn't rebased before merging [17:10:46] greg-g: lol, it's just not playing nicely with two different versions of code running [17:22:28] hey, do we have Gerrit admins here? we need a security patch merged over jerkins' objections [17:26:47] MaxSem: you can remove jerkins from the patch and then v+2 [17:27:02] it makes zuul sad though [17:27:15] nah, I can't V+2 [17:27:49] MaxSem: what patch? [17:27:50] ostriches and legoktm are admin I think. and twentyafterfour and any root [17:27:57] https://gerrit.wikimedia.org/r/#/c/224826/ [17:30:00] MaxSem: ok, you should be able to V+2 and submit now [17:30:53] thanks legoktm [18:38:51] sad vps is not rebooting; no bouncer for me :/ [19:25:26] * bd808 successfully bounced the bouncer [20:12:57] csteipp: about https://phabricator.wikimedia.org/T108101 - which team you think should be responsible for this? [21:09:54] bd808: any reason the wbstatus link shouldn't be posted in a phab ticket? (e.g. we want to keep it private-ish for some reason) [21:10:26] meeple27: wbstatus? [21:11:31] robla's cool script [21:12:33] ah [21:13:02] no, no secret sauce there. https://github.com/robla/phab-wbstatus [21:13:15] I kinds forgot all about that thing [21:13:21] *kinda [21:13:35] ok thanks [21:13:51] it's still running on a labs instance cranking out empty reports I think [21:16:31] yup, lots of empty reports -- https://mw-core-wbstatus.wmflabs.org/ [22:04:04] dapatrick: Doh, Just realized we had a meeting.. sorry about that [22:04:40] That's okay. I switched it about half an hour before. [22:05:44] I'm free the rest of the afternoon if you still want to chat [22:08:45] I will reschedule for tomorrow a.m. [22:09:09] I'm offline from 4:00-5:15 and I want to get a patch together for mobrovac and mvolz to look at when they next come online. [22:12:55] AaronSchulz: a few people have now started complaining about getting spontaneously logged out... https://en.wikipedia.org/wiki/Wikipedia:Village_pump_%28technical%29#Strange_global_login_behavior_and_bugs_with_Gecko_based_browsers [22:32:51] legoktm: What did you fix? [22:33:19] csteipp: nothing, I just waited for the train deploy to happen so all wikis would have the same version of CA [22:39:47] legoktm: is it actually browser specific? [22:46:29] AaronSchulz: I doubt it, but I was unable to reproduce in any of my browsers (Firefox & Chromium)