airship
/
promenade
Code Issues Proposed changes
1,038 Commits 3 Branches 0 Tags 11 MiB
Commit Graph

6 Commits

Author SHA1 Message Date
anthony.bellino 0e8b5cfe59 Uplift Promenade image to address CVEs 
The current Promenade image is vulnerable to several CVEs:
CVE-2019-3462
CVE-2018-16865
CVE-2018-16864

Which Ubuntu 16.04/18.04 addresses.
This patchset makes the following changes:
1. Adds new distro specific dockerfiles for xenial/bionic.
2. Updates gates to be specific about the ubuntu image being
   checked.
3. Updates .zuul.yaml checks/gates/post jobs for xenial/bionic.
4. Updates build-image.sh docker build for specific dockerfile
   specified in config.sh (IMAGE_PROMENADE_DISTRO).

Change-Id: I89e5297a3baa8c2d2c142e5e29932476fc628398
 2020-05-28 16:09:40 +00:00
Mark Burnett eb13fe8e46 Update examples to use new image/repo locations 
Change-Id: I284369af2f822c559afbd9ffaf0b1df537baa533
 2018-06-27 13:57:12 -05:00
Mark Burnett 135f0e7dc7 Doc: Add brief getting started with API section 
Change-Id: I5bd0984bbdd65b7ca073d75de611499dab0ad906
 2017-11-20 15:13:48 -06:00
Mark Burnett e56ad622c3 Add an example with Ceph 
This extends the virsh-based test tooling to both the previous, basic
example and the new "complete" example.  It also removes the Vagrant
tooling.

Change-Id: I249f937e9b3eedc486e31a3d1c1ac31bcfdf0ca8
 2017-10-26 07:40:31 -05:00
Mark Burnett 95643147c5 Migrate to self hosted using charts 
This change includes several interconnected features:

* Migration to Deckhand-based configuration.  This is integrated here,
  because new configuration data were needed, so it would have been
  wasted effort to either implement it in the old format or to update
  the old configuration data to Dechkand format.
* Failing faster with stronger validation.  Migration to Deckhand
  configuration was a good opportunity to add schema validation, which
  is a requirement in the near term anyway.  Additionally, rendering
  all templates up front adds an additional layer of "fail-fast".
* Separation of certificate generation and configuration assembly into
  different commands.  Combined with Deckhand substitution, this creates
  a much clearer distinction between Promenade configuration and
  deployable secrets.
* Migration of components to charts.  This is a key step that will
  enable support for dynamic node management.  Additionally, this paves
  the way for significant configurability in component deployment.
* Version of kubelet is configurable & controlled via download url.
* Restructuring templates to be more intuitive.  Many of the templates
  require changes or deletion due to the migration to charts.
* Installation of pre-configured useful tools on hosts, including calicoctl.
* DNS is now provided by coredns, which is highly configurable.

Change-Id: I9f2d8da6346f4308be5083a54764ce6035a2e10c
 2017-10-17 13:29:46 -05:00
Mark Burnett 74bde0f6f3 Add image build dev script 2017-07-27 07:56:20 -05:00