Similar to the recent change
Ie00c42857e7a541aa1ccb8fe480756c1e7a38dc4, the patched version of
vhd-util in the openstack-ci PPA produces Xen (rackspace) acceptable
.vhd images from diskimage-builder. This is another tool that isn't
really captured by our gitops model (the need for this is all covered
in [1] as to why this is a big PITA; tl;dr when porting this into qemu
things that seem like they should work don't in Rackspace, and without
being able to see the operator side of the cloud to understand what
it's actually doing it's just an exercise in frustration).
Similar to the openafs situation, the code is available from the PPA
but the history has been kept in personal repos and uploaded manually.
Having it go through gerrit is good for transparency and longer term
maintenance.
We'll have to fiddle the upload jobs, etc. so it works for both
openafs and this; so this is just the first step to get things
started.
[1] https://docs.openstack.org/diskimage-builder/latest/developer/vhd_creation.html
Change-Id: I92b9c65ade7fba2851fd798bad4f658da400dec4
This is a project to hold things related to building the OpenAFS
packages used by OpenDev infra. These packages are pushed to a PPA
which is consumed by our production machines.
We keep a separate PPA for these packages as we have had occasions in
the past where we either needed more recent versions of OpenAFS for
various platform support, or had to apply patches with some urgency to
keep things going. Being able to quickly produce new packages has
been very helpful.
Previously these have been created by hand, where somebody uploads the
debian package bits to the PPA manually and a .deb is produced. Of
course the source of those packages is available, but it's not very
git-ops-y or collaborative.
This started in I07780595331da29af9f72185cbb3499210e89c19 where
fungi's concerns that I argued against were completely correct.
Trying to build across xenial -> jammy with one debian/* directory is
not going to work, and checking in multiple trees is very unwieldy in
that repo.
This proposes a separate repo where we can keep branches for each
distro's build. We can then use the existing infrastructure we've
built to build the source packages and push to the PPA for building.
I've chosen the name with "infra-" in front to make it clear these
aren't supposed to be general purpose packages in any way, but are for
opendev infra use. I've put this in the openstack tenant because the
build bits are still in openstack/openstack-zuul-jobs for historical
reasons -- this is where we do similar builds for RPM (which uses AFS
publishing jobs, and has openstack embedded in paths, etc.) and it
makes sense to keep them together. We can consider moving everything
under the opendev tenant in the future.
Change-Id: Ie00c42857e7a541aa1ccb8fe480756c1e7a38dc4
The opendev/elastic-recheck project has ongoing development
occurring on an "rdo" feature branch. Grant the release team for it
permission to merge that branch into master, as well as the ability
to delete the feature branch.
Change-Id: I406cb6dd721b48f893cd8a7ab9f36dcadec9a238
This charm implements a 3PAR backend for cinder, acting as
a subordinate charm.
Change-Id: I14c6bd857a09cab07546def009c654738b085c46
Required-By: I16075836abd321d53089d123a711c586b7597a5c
Add a new charm that provides CephFS backed NFS
shares via the Ganesha service.
Required-By: I75d6105546249d96a211c9607e5ccdaea7736e20
Change-Id: I1111ab9eb53581eec3536b7385c0570dbf4f00ce
puppet-tuskar was already retired[1]. This change removes/updates
the remaining configuration about that retired repo.
[1] https://review.opendev.org/c/x/puppet-tuskar/+/263919
Change-Id: I17d3a4aebb0670aa14885449050160b44bea4e8b
This change introduces the puppet-manila-core group so that we can
assign a core reviewer specific to this project.
Change-Id: I7da42a889e81b124471ebcf04c49a303587f34a0
This is an import of Gerrit that has not been used since we switched
to 3.x and started building containers directly from upstream.
Depends-On: https://review.opendev.org/c/opendev/gerrit/+/833943
Change-Id: I66d500d86f2098b22cd89644dd6116d16ee0be69
sushy-oem-idrac is officially part of Hardware Vendor SIG now [1].
This moves the project to openstack namespace and adjusts config.
[1] https://review.opendev.org/c/openstack/governance/+/832264
Change-Id: Ie42b9c7012c0592eb3ba48527cb318ca63541d3e
This removes the newly retired opendev repos from gerritbot and zuul.
Then updates their ACLs to the retired project ACL.
Change-Id: I22b504b9a5e37be9ac12f68fd3129ab379c706b0
Stable branch was created only recenlty and it should inherit
all configs from master.
This repo is SIG repo, not under Openstack or release team.
Change-Id: I5e03aca5ae82e358d96bf69d41db45bbf2c03352
In ansible-collections-openstack project allow to release team to
delete branches if need.
This is a SIG project, not under a Openstack Release Team.
Change-Id: I239c5aab0441dfb6ba8f21b4aa17b060f5faca58
This introduces new ACL file that aims only to make repos parented to
the integrated repo. With that it should be easier to
search OSA-related changes in gerrit along with building dashboards.
Change-Id: I5c46c503159ff272f191bea8d4fa1cee7c0bccdb
Since the Travis CI is no longer useable, we want to build new jobs for
CirrOS on the OpenDev platform. Since at a later stage some testing
involving a Devstack deployment may be helpful, this is placed into the
openstack tenant.
Change-Id: I188ad6803015b880f8f952052012fa1c3c8b52fc
Now that we have a fix in place for Gerrit's tag signature detection
regression, remove the unsafe permission for pushing unsigned tags
to return everything to the state we had prior to the 3.4 upgrade.
Change-Id: Ia9afb5fb4be311cca59d3e1cf3b7bc611184fe15
Upon upgrading from Gerrit 3.3 to 3.4, a regression was observed in
which jgit no longer returns signatures in its tag messages, causing
Gerrit to misidentify signed tags as unsigned (annotated) tags.
Because our ACLs only allow signed tags to be pushed, this
regression prevents Gerrit from accepting them now.
Temporarily grant permission to push unsigned tags to anyone who
has permission to push signed ones. We will revert that as soon as a
fixed Gerrit is in place, but in the meantime users will be warned
to take care when pushing tags so that they don't accidentally push
actually unsigned tags to Gerrit.
Also, the pushSignedTag keyword was deprecated in favor of the new
createSignedTag name, so go ahead and update to that while we're
doing this so that we can limit the amount of churn across all these
ACLs. Documentation will be corrected to recommend the new format in
a separate change, but update the ACL linter now to prevent the old
syntax from being used in new projects.
This workaround was already tested on opendev/bindep in the parent
Iad8c1f83e247c9a8bcf5b4f530f7b83663e1f793 change, and confirmed to
function as intended.
Change-Id: Ia426ea36b4e6877fdce5725ff1e00ae02c62e3f4
We're testing a potential workaround for a suspected regression in
Gerrit 3.4, where signed tags are rejected with the error "You need
'Create Tag' rights to push a normal tag." Temporarily grant this
for the opendev/bindep project, so we can see if it works around the
problem while we coordinate a fix with Gerrit upstream.
Change-Id: Iad8c1f83e247c9a8bcf5b4f530f7b83663e1f793
The pushSignedTag permission is deprecated, and has a new name:
createSignedTag. Update the opendev/bindep ACL accordingly, as we're
seeing a regression with the old name and would like to rule out
whether the new name has the same problem.
Change-Id: Ia95919bcfe71ce488096584c784fe7376f66f34a