All Airship projects are moving to GitHub issues. This change adds a
GitHub security policy that links to the official Airship vulnerability
management process [0]. When users on GitHub click "New Issue" on this
GitHub repository, they will see an option to report a security
vulnerability, which will direct them to our official policy.
[0] https://airship-docs.readthedocs.io/en/latest/security/vulnerabilities.html
Change-Id: Iaf060dd0085c21f0c4f18f100e3e053b5ceedbed
Signed-off-by: Drew Walters <andrew.walters@att.com>
yaml.load(input) is deprecated in pyyaml 5.1. This causes the
manifests_lookup function to append the python warning message
to the look up results. The pegleg cmd fails to launch container
due to extra strings after the image url. Added code to specify
the loader if the pyyaml version is 5.1 or newer.
Change-Id: I4765df28eedf99a8e823e192cf2f2f2b38434f2c
Signed-off-by: James Gu <james.gu@att.com>
This adds a job which will be run to upload documentation as the
root of the docs site after successful gating.
Depends-On: https://review.opendev.org/706598
Change-Id: I3c98f9e2e4076a7b2cedccf02f4c978b91c8e3b6
* Last AIAB commit ID: d7d345f
* Also moving from Quagga to FRRouting for bgp router script.
* Synced the recent changes in aiab and removed the frrouting change
which is still open in aiab
Change-Id: If5e4e030dacaa7fcf525f9767f50c82b07516e27
Updated the commit id for openstack-helm-infra to include fix for
name resolution issue for Ubuntu 18.04
Also, updated deploy k8s script to remove local dns address
from /etc/resolv.conf.
Change-Id: I32e691696b72c67e88df83b0d511aece380faa46
This change adds AppArmor to airskiff in order to test apparmor changes
to Airship charts.
Change-Id: I642275a9d5d6d44110298356d7be51cf711c8fe3
Signed-off-by: Drew Walters <andrew.walters@att.com>
Postgresql utility container will be used by operations team
to perform operation on postgresql server.
Change-Id: Ie24886fee74c75b7f4a4a9cf6640249912aa8e47
Pegleg requires for a password and salt to be longer than 24 characters. This
patch updates 'tools/airship' wrapper script with default Pegleg password and
salt to be longer than required.
Fixes error:
> pegleg.engine.exceptions.PassphraseInsufficientLengthException:
> PEGLEG_PASSPHRASE must be at least 24 characters long.
Change-Id: I31e7694970281ae992e918b67ff3d7f97d3c9bc5
Update Armada bootstrap script used by Airskiff to use latest Bionic
image ':latest-ubuntu_bionic', instead of older unsuppoerted
':latest' image.
This should solve the following issue:
> RequestsDependencyWarning: urllib3 (1.25) or chardet (3.0.4)
> doesn't match a supported version!
Change-Id: Ic7b1b0a53c307e5416415aeb59767bcb33f753bb
Story: 2006939
Task: 37609
During the recent Airship Working Committee meeting, the committee
addressed feedback from the Airship confirmation review [0]. One such
item was concerned with copyright footers mistakenly claiming rights to
all Airship documentation.
This change updates the footer to attribute documentation to all Airship
authors.
[0] https://etherpad.openstack.org/p/airship-wc-meeting-2019-12-09
Change-Id: I37176e8679d7c917ba05be220d956d2eb6b41ded
Signed-off-by: Drew Walters <andrew.walters@att.com>
This fixes setting up of Keystone endpoints by omitting 80/443 ports.
See https://review.opendev.org/#/c/697740/
Change-Id: I2d702676398aa7a8e421c18578139331b14fe5ea
With the latest changes to promenade introduced in
https://review.opendev.org/#/c/686841/ socat has to be part of the
genesis role as well common
Change-Id: I19de0e2543400f08d800aa9732889409c681e8bf
This gives users a straight forward way to update
airship SSH key for deployment (MAAS/divingbell config).
Change-Id: Ib67774fb67daa79e255b32e6a3e98a5bde96af4f
Update coredns chart/image to streamline with changes from
https://review.opendev.org/#/c/679525/.
Update osh-selenium image to latest-ubuntu_bionic for python3.
Update prometheus-openstack-exporter to ubuntu_xenial-20191017 for
python3 as well.
Change-Id: I5cefc804e81b718e69b4e8e798444673f7472974
This utility container will allow Operation users to interact
with MySQL/MariaDB server in the K8s Cluster.
Change-Id: I0027b43d4c80c71d7f18906caa9d54a0afccaa83
This etcdctl utility container will help the Operation user
to check the state/stats of etcdctl resources in the K8s Cluster
Change-Id: I2bf14cf434db9b547ba74307e21f9a4d506e911e
Ceph utility container will be used to perform
operations team to perform operation on the ceph
cluster
Change-Id: Ib85c5a629bc892eda38a25278a53f50cf44cba47
Calicoctl utility container will be used to perform
operations team to perform operation on the calicoctl
cluster
Change-Id: I2230c07b17d9605d49cd39042eb4e7288960fb79
The images target of Armada's Makefile produces an Ubuntu Bionic image
by default. Currently, Airskiff tests with Armada's Xenial image, which
means the latest Armada changes do not get tested. This change switches
Armada's image to the Bionic one.
Change-Id: I920272b4e73cb3ad67f5f5ecb3bde1febc71d183
Signed-off-by: Drew Walters <andrew.walters@att.com>
Current Nova service endpoint is set to legacy compute version: v2.
According to the doc [1], minimum microversion in Nova is 2.1,
which is a microversion compatible with the legacy v2 API.
After that, nova client will be able to add into a requests:
X-OpenStack-Nova-API-Version HTTP header, which is required for some
tempest tests.
[1] https://docs.openstack.org/api-guide/compute/microversions.html
Change-Id: I6a7305cbbab0b20a6b926f6358dfdf463df49652
Removing the need for the security context
in the maas charts since recent maas repo uplift
is now merged and take care of the this [0].
[0] https://review.opendev.org/#/c/684149/
Change-Id: I26457f5c370da128719ba966209efbddd72b21ac