| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|\
| |
| |
| |
| | |
baserock_ostree: Update for changes in BuildStream
See merge request !6
|
|/
|
|
|
|
|
|
|
| |
We now need a timer job to update the summary file, see:
https://buildstream.gitlab.io/buildstream/artifacts.html#summary-file-updates
I also updated BuildStream which changes the artifact push protocol.
Sadly the protocol isn't versioned yet so old versions will now fail to
push with weird errors.
|
|\
| |
| |
| |
| | |
Add ostree.baserock.org definitions
See merge request !5
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
So far this is limited to the existing Baserock ops team, and a new
key that I will try to install into our GitLab CI configuration so
that build runners can push artifacts.
We don't to hand out access too widely because we currently don't do
any verification that the submitted artifacts actually corresponds to
the cache key that it's supposed to. This is fine as long as access
is limited to autobuilders that we control and trusted developers.
|
| |
| |
| |
| |
| |
| | |
This is used by YBD for resolving remote Git commit SHA1s to tree SHA1s.
Previously the port was opened by the shared-artifact-cache security
group, but it no longer is.
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This is a new instance that can be used as an artifact cache by the
BuildStream build tool. Anyone can download artifacts over HTTPS.
Those given SSH access to the machine can write to the artifact cache
(this will likely be limited to automated build machines).
DNS is now set to point cache.baserock.org and ostree.baserock.org to
the HAProxy frontend.
The SSL certificate for the frontend-haproxy system has been regenerated
to include the cache.baserock.org and ostree.baserock.org domains.
|
| |
| |
| |
| | |
Previously we depended on 3rd party openstack-ansible-modules.
|
| | |
|
| |
| |
| |
| |
| |
| | |
These are obsolete, see:
https://listmaster.pepperfish.net/pipermail/baserock-dev-baserock.org/2017-January/013765.html
|
|/ |
|
|\
| |
| |
| |
| | |
Pedro/no push notifications
See merge request !3
|
| | |
|
|/ |
|
|\
| |
| |
| |
| | |
baserock_bots: configure Gitlab bot for Baserock too
See merge request !2
|
|/ |
|
|\
| |
| |
| |
| | |
Pedro/ssl may 2017
See merge request !1
|
| | |
|
|/ |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
This will let us use easily more SSL certs from our HAProxy instance
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
This worksaround an issue with newer versions of Ansible. See
https://docs.ansible.com/ansible/become.html#becoming-an-unprivileged-user
for more information.
|
| |
|
| |
|
| |
|
|
|
|
|
| |
Combination of "ISRG Root X1" and "Encrypt Authority X3" certificates
downloaded from https://letsencrypt.org/certificates/
|
| |
|
| |
|
|
|
|
| |
Change-Id: I144f449a22cdcae6967bacf5f3c08ce660a998d8
|
|
|
|
| |
Change-Id: Iccbaedfcfde6025f0f76959771c59f4615ecc0e8
|
|
|
|
| |
Change-Id: I8b974008f4c4c487c3386131993b442f936eb146
|
|
|
|
|
|
|
|
|
|
| |
Having them in files lying around in a local repository
is dangerous, they could be commited and pushed by accident.
Also, having these files in a mail is not good either, and makes
this repository complicated to use for us.
Change-Id: I644e1fb8228e3cb081a004547abaf654e9c449b7
|
|
|
|
|
|
|
| |
This new version allows configuring the instance with comments
edition.
Change-Id: I1b889b630f72e17588f332f31d6f9f1a45d5cb7c
|
|
|
|
|
|
|
|
|
| |
This new version brings bugs and security fixes, see
release notes for more info:
https://gerrit.googlesource.com/gerrit/+/HEAD/ReleaseNotes/ReleaseNotes-2.12.3.txt
Change-Id: I8848c50339994263513362096e2f0126989d5bd4
|
|
|
|
| |
Change-Id: I829c2af49210e348ec26fe601c93f80dade3648b
|
|
|
|
| |
Change-Id: I420d839b895cd263d9b912506a74811125b5b9e4
|
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Systemd requires a version >= 2.27.1, and 2.28 also includes
various btrfs fixes.
For more infromation see the release notes:
http://git.baserock.org/cgit/delta/util-linux.git/tree/Documentation/releases/v2.28-ReleaseNotes
Change-Id: If6d44eb3d06eb7f511b9a5b6ea2166a7cf0af468
|
| |
| |
| |
| |
| |
| | |
Required by systemd (see systemd README)
Change-Id: I65d8dae4c31c31ddc4de8fa90f4faa83518c20d3
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
These udev rules were being ignored since we configured Systemd to
install things in /usr/bin and /usr/lib in
0a0da35e1a693fc909d1628f5e81cb3b2693c057.
LVM device nodes weren't being created, and as a result, systems that
had LVM volumes configured in fstab, weren't booting.
Installing the udev rules in /usr/lib fixes the problem.
Change-Id: Ia3372676700c78c655af8721bb8568549eb64666
|
| |
| |
| |
| |
| |
| |
| |
| | |
Symlinks weren't being updated during upgrades, keeping
the current version even if that wasn't modified by the
user.
Change-Id: I2f4290108d7dddc3bef5f25d3eb1e331be77e748
|