summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2017-12-20validate-pdf-jinja2-templates-master failingagardner2-4/+4
If keys do not exist, the skipping decryption python stuff doesn't work, see: https://build.opnfv.org/ci/job/validate-pdf-jinja2-templates-master/16/consoleFull Still does not fallback to plain in the case of a 'bad decryption', but the current code does not either, bad decryption is logged in any case. Change-Id: I8da2c7cf8568a6e77ca24cc9ce665410d93b7ba9 Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-12-15Merge "Linux Foundation POD5 PDF"Jack Morgan1-0/+210
2017-12-15Merge "Moving all pdfs to pharos repo"Jack Morgan3-0/+585
2017-12-15Merge "Moving all pdfs to pharos repo"Jack Morgan1-0/+193
2017-12-15Merge "Update the example config filename in eyaml README"Jack Morgan1-1/+1
2017-12-15Merge "Encrypt ipmi info of zte baremetal pods"Jack Morgan3-6/+60
2017-12-15Merge "Generate daisy network configuration by template"Jack Morgan2-0/+204
2017-12-15Update the example config filename in eyaml READMEAlex Yang1-1/+1
The example configuration file in the directory pharos/config/utils/ is config.example.yaml. Change-Id: I493274e4ddb689eb729ed642b5f495b5be0b75b0 Signed-off-by: Alex Yang <yangyang1@zte.com.cn>
2017-12-15Encrypt ipmi info of zte baremetal podsAlex Yang3-6/+60
Change-Id: I86935bee9ff30d811f0e756f93716cb415fa3a01 Signed-off-by: Alex Yang <yangyang1@zte.com.cn>
2017-12-14Merge "Update eyaml README"Aric Gardner1-1/+2
2017-12-14Merge "Moving all pdfs to pharos repo"Jack Morgan4-0/+573
2017-12-14Merge "Moving all pdfs to pharos repo"Jack Morgan14-0/+1293
2017-12-13Update eyaml READMETrevor Bramwell1-1/+2
On CentOS7 systems the gem command is contained in the 'rubygems' package, not 'ruby-gems'. After the keys have been moved, there is not reason to keep around the 'keys' directory. Change-Id: I5cb9f474276de75b650ddf323a279e139fb62d37 Signed-off-by: Trevor Bramwell <tbramwell@linuxfoundation.org>
2017-12-13Linux Foundation POD5 PDFTrevor Bramwell1-0/+210
Change-Id: I0c4389059edb33fecdd472777d7266c4934f1d07 Signed-off-by: Trevor Bramwell <tbramwell@linuxfoundation.org>
2017-12-13Updating the INFO fill with names and email address.Jack Morgan1-8/+8
Removing Qiao Fu who is no longer able to participate in project. Change-Id: I4bfcb378f3a5da6af59292f8911fa8fc8200cbae
2017-12-11Merge "[fuel] extend public gateway support"Aric Gardner1-0/+9
2017-12-11Merge "[fuel] Add MaaS PXE network to installer adapter"Aric Gardner1-0/+5
2017-12-11Merge "[fuel] Add IDF mappings to installer adapter"Aric Gardner1-0/+7
2017-12-11[fuel] Add MaaS PXE network to installer adapterAlexandru Avadanii1-0/+5
JIRA: FUEL-313 Change-Id: I046ea732e1047f793f1b3bc6f7fc31cfcee9ff40 Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>
2017-12-10[fuel] cleanup: Drop infra_compute_*_addressAlexandru Avadanii1-3/+0
Our PDF installer adapter defines 3 unused reclass params that are misleading, so drop them (infra_compute_node{01,02,03}_address). Change-Id: Iedf68bbfa77f3a42572dde30275318c8d04f5eb4 Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>
2017-12-09generate_config.py: Fix running without eyamlAlexandru Avadanii1-3/+7
If eyaml is not installed or misconfigured, we should output raw encrypted data and throw a warn/error accordingly, instead of bailing out completely. Needed for Fuel deploys on PODs that do not use PDF encryption, e.g. lf-pod2. Change-Id: I2905df11a3cf2f2eb1ab9bfd8bd88619af2cab04 Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>
2017-12-07[fuel] Add IDF mappings to installer adapterAlexandru Avadanii1-0/+7
Change-Id: I3a82ed747d2671510a25e65388c7f73ec760afc3 Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>
2017-12-07[fuel] extend public gateway supportGuillermo Herrero1-0/+9
JIRA: FUEL-305 Change-Id: Ic5a2d499925aeec5b597394a059640ddae83fb2d Signed-off-by: Guillermo Herrero <guillermo.herrero@enea.com>
2017-12-07Merge "Moving all pdfs to pharos repo"Jack Morgan1-0/+294
2017-12-07Merge "[fuel] IPMI: Trim netmask from IP passed to MaaS"Jack Morgan1-5/+5
2017-12-07Merge "[fuel] Use PXE interface index from net_config"Jack Morgan1-2/+2
2017-12-06Generate daisy network configuration by templateAlex Yang2-0/+204
JIRA: DAISY-74 Add jinja2 templates for daisy network configuration. For DPDK, TENANT and EXTERNAL networks should share the same interface now. Change-Id: I6e9b7a68fb572e9ad844cfcc6ff383aaa25e3bc1 Signed-off-by: Alex Yang <yangyang1@zte.com.cn>
2017-12-01Moving all pdfs to pharos repoagardner14-0/+1293
Note: Also fixed yamllint issues with these files Inline encrytion of yaml files allows us to make away with securedlab's restrictions. Going forward, anyone will be able to see Lab PDFs See: https://github.com/opnfv/pharos/blob/master/config/utils/README.eyaml.rst If you are the reviewer on this changeset it is becasue git blamed showed you to be the author of the pdf in this review. Encrypting ipmi password etc is optional. I have scrubbed the password from this change. If you do not need the password to be hidden, please let me know in the comment, and I will put it back. If you do need the password hidden, please follow the readme above and ammend this patch to include the encrypted value that you create on your pods jumphost. Passwords and Usernames removed: $ egrep -r '(pass|user)' zte/pod2/daisy/config/deploy.yml: ipmi_user: zte/pod2/daisy/config/deploy.yml: ipmi_pass: zte/pod2/daisy/config/deploy.yml: ipmi_user: zte/pod2/daisy/config/deploy.yml: ipmi_pass: zte/pod2/daisy/config/deploy.yml: ipmi_user: zte/pod2/daisy/config/deploy.yml: ipmi_pass: zte/pod2/daisy/config/deploy.yml: ipmi_user: zte/pod2/daisy/config/deploy.yml: ipmi_pass: zte/pod2/daisy/config/deploy.yml: ipmi_user: zte/pod2/daisy/config/deploy.yml: ipmi_pass: zte/pod2/daisy/config/deploy.yml:daisy_passwd: '' zte/virtual1/daisy/config/deploy.yml:daisy_passwd: '' zte/pod3.yaml: user: zte/pod3.yaml: pass: zte/pod3/daisy/config/deploy.yml: ipmi_user: zte/pod3/daisy/config/deploy.yml: ipmi_pass: zte/pod3/daisy/config/deploy.yml: ipmi_user: zte/pod3/daisy/config/deploy.yml: ipmi_pass: zte/pod3/daisy/config/deploy.yml: ipmi_user: zte/pod3/daisy/config/deploy.yml: ipmi_pass: zte/pod3/daisy/config/deploy.yml: ipmi_user: zte/pod3/daisy/config/deploy.yml: ipmi_pass: zte/pod3/daisy/config/deploy.yml: ipmi_user: zte/pod3/daisy/config/deploy.yml: ipmi_pass: zte/pod3/daisy/config/deploy.yml:daisy_passwd: '' zte/pod1.yaml: user: zte/pod1.yaml: pass: zte/virtual2/daisy/config/deploy.yml:daisy_passwd: '' zte/pod2.yaml: user: zte/pod2.yaml: pass: lf/pod2.yaml: user: > Change-Id: I876f4b553c51dd4592701539cfce66bcf8c114ab Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-12-01Moving all pdfs to pharos repoagardner1-0/+193
Inline encrytion of yaml files allows us to make away with securedlab's restrictions. Going forward, anyone will be able to see Lab PDFs See: https://github.com/opnfv/pharos/blob/master/config/utils/README.eyaml.rst If you are the reviewer on this changeset it is becasue git blamed showed you to be the author of the pdf in this review. Encrypting ipmi password etc is optional. I have scrubbed the password from this change. If you do not need the password to be hidden, please let me know in the comment, and I will put it back. If you do need the password hidden, please follow the readme above and ammend this patch to include the encrypted value that you create on your pods jumphost. Change-Id: Idc70540477d8569f15335e75e7725c1e4e56a60b Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-12-01Moving all pdfs to pharos repoagardner1-0/+294
Inline encrytion of yaml files allows us to make away with securedlab's restrictions Going forward, anyone will be able to see Lab PDFs See: https://github.com/opnfv/pharos/blob/master/config/utils/README.eyaml.rst If you are the reviewer on this changeset it is becasue git blamed showed you to be the author of the pdf in this review. Encrypting ipmi password is optional. I have scrubbed the password from this change. If you do not need the password to be hidden, please let me know in the comment, and I will put it back. If you do need the password hidden, please follow the readme above and ammend this patch to include the encrypted value that you create on your pods jumphost. Change-Id: Ie3e935e7e9250a387858c29eb77c3c06b4fe3f57 Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-12-01Moving all pdfs to pharos repoagardner3-0/+585
Inline encrytion of yaml files allows us to make away with securedlab's restrictions. Going forward, anyone will be able to see Lab PDFs See: https://github.com/opnfv/pharos/blob/master/config/utils/README.eyaml.rst If you are the reviewer on this changeset it is becasue git blamed showed you to be the author of the pdf in this review. Encrypting ipmi password is optional. I have scrubbed the password from this change. If you do not need the password to be hidden, please let me know in the comment, and I will put it back. If you do need the password hidden, please follow the readme above and ammend this patch to include the encrypted value that you create on your pods jumphost. Change-Id: I52a5c117da599fd46aa246de20077d5bdbe8a3b6 Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-12-01Moving all pdfs to pharos repoagardner4-0/+573
Inline encrytion of yaml files allows us to make away with securedlab's restrictions Going forward, anyone will be able to see Lab PDFs See: https://github.com/opnfv/pharos/blob/master/config/utils/README.eyaml.rst If you are the reviewer on this changeset it is becasue git blamed showed you to be the author of the pdf in this review. Encrypting ipmi password is optional. I have scrubbed the password from this change. If you do not need the password to be hidden, please let me know in the comment, and I will put it back. If you do need the password hidden, please follow the readme above and ammend this patch to include the encrypted value that you create on your pods jumphost. Change-Id: Ic2db523e7f82a0fb48e462a1fbe1402267f22618 Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-11-24Jenkins does not have /usr/local/bin/ in pathagardner1-0/+1
Stupid jenkins Change-Id: Ibfd83e7dadd674cfe7d7a9c2a712ef069fb8d5de Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-11-23Moving check-jinja2 to pharos.agardner2-0/+310
Securedlab will be going away now that we can encrypt strings (eyaml) we need to check jinja2 PDF templates that will be moving into pharos This adds one pod yaml files and fixes paths in check-jinja2.sh After this is merged I can create a jenkins job for pharos. Then I can start moving pdf files into the pharos repo Change-Id: I2f2f2925275de49035d7d0160249d75b25ca0d20 Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-11-22Merge "generate_config: Use eyaml to decrypt secret values"Aric Gardner4-4/+376
2017-11-20Fix yamllint warning for daisy templateAlex Yang1-40/+51
Change-Id: I4b9a9a569d22570f027a49bc31736f6787177171 Signed-off-by: Alex Yang <yangyang1@zte.com.cn>
2017-11-17generate_config: Use eyaml to decrypt secret valuesAlexandru Avadanii4-4/+376
Note: IDF data encryption is not supported. Supporting that is trivial, but it leads to slightly more complicated code, plus it breaks support for multiline scalar encrypted data in the PDF ('>'), forcing us to define each encrypted value as inline string. While at it, fix silly limitation of jinja2 path residing in a subdir of CWD. Change-Id: I441ec754d8b6e4aad2ed73aba0b9b18ed65f05f4 Signed-off-by: agardner <agardner@linuxfoundation.org> Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>
2017-10-27[fuel] Use PXE interface index from net_configAlexandru Avadanii1-2/+2
Instead of assuming the PXE network interface is always the first, read its index from 'net_config' section. Change-Id: I0b4e9fc89297f4bd718a2e5336746917347c89e1 Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>
2017-10-27[fuel] IPMI: Trim netmask from IP passed to MaaSAlexandru Avadanii1-5/+5
Change-Id: I683788846a716f1af6ae8aa3b25cc3a866ae0045 Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>
2017-10-25[fuel] Assign public network to proxy nodesMichael Polenchuk1-3/+3
Change-Id: I8d4cc9505eb1d405b8f6a3ef1053249d803bda7b Signed-off-by: Michael Polenchuk <mpolenchuk@mirantis.com>
2017-10-01Merge "PDF: generate_config: Add IDF parsing support"Jack Morgan1-0/+8
2017-09-27Updated fuel adapter (vlan1000, interfaces format)Guillermo Herrero1-6/+7
Change-Id: I848f13acca08c4c8a24eeecd3554ea6d50bbb565 Signed-off-by: Guillermo Herrero <guillermo.herrero@enea.com>
2017-09-26Merge "Updated fuel adapter (ODL)"Jack Morgan1-5/+8
2017-09-26Move POD descriptor file template to its own directory (pdf/pod1/yaml)Jack Morgan1-0/+0
Change-Id: Ibb481d57e3c154c409c2635096330f2e63dce9db Signed-off-by: Jack Morgan <jack.morgan@intel.com>
2017-09-26Updated fuel adapter (ODL)Guillermo Herrero1-5/+8
Change-Id: I4ff233460bb4fbd88277f2798f5f6380ff3b367d Signed-off-by: Guillermo Herrero <guillermo.herrero@enea.com>
2017-09-26PDF: generate_config: Add IDF parsing supportAlexandru Avadanii1-0/+8
For a given 'podN.yaml' file, check whether a file named 'idf-podN.yaml' exists in the same directory, and if it does, pass its contents under the 'idf' dict key to the j2 template. This assumes the contents of IDF yaml have a root 'idf' key. Change-Id: I6c6f1b9f28c38989f8a6ed4a389c9a1da423d76d Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>
2017-09-26Merge "Remove inactive committers"Jack Morgan1-2/+0
2017-09-26Merge "Remove 'tools' Directory"Jack Morgan222-19699/+0
2017-09-25Remove inactive committersagardner1-2/+0
Removed committers have not touched the project in over a year Current committers, Please vote with +2,0,-2 on this change I will ask the TSC to ammend the by-law on removing committers, so that It can be done by vote if a committer is inactive for a long period Change-Id: I55234cea80e26fd377a1b7d5a6e062db8b78defe Signed-off-by: agardner <agardner@linuxfoundation.org>
2017-09-25Add fuel installer adapterGuillermo Herrero1-0/+114
v3 -> v4: - extract common variable refs, fold some reusable code; - provide dummy defaults for PDFs without net_config; - keep yamllint happy about spaces and empty lines; v4 -> v5: - more folding, define a macro for multiple IP address definition; v5 -> v6: - added MaaS network / DHCP range support; v6 -> v7: - removed macro, template code reverted to output style JIRA: FUEL-275 Change-Id: Ib1cc319534d06c088b1db16a43aef663a8ada0d8 Signed-off-by: Guillermo Herrero <guillermo.herrero@enea.com> Signed-off-by: Alexandru Avadanii <Alexandru.Avadanii@enea.com>