| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|\
| |
| | |
node/sdn: make /var/lib/cni persistent to ensure IPAM allocations stick around across node restart
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
around across node restart
With the move to a CNI plugin, docker no longer handles IPAM, but CNI does through
openshift-sdn's usage of the 'host-local' CNI IPAM plugin. That plugin stores
IPAM allocations under /var/lib/cni/.
If the node container gets restarted, without presreving /var/lib/cni, the IPs
currently allocated to running pods get lost and on restart, openshift-sdn
may allocate those IPs to new pods causing duplicate allocations.
This never happened with docker because it has its own persistent IPAM store that
does not get removed when docker restarts. Also because (historically) when docker
restarted, all the containers died and the IP allocations were released by the
daemon.
Fix this by ensuring that IPAM allocations (which are tied to the life of the pod,
*not* the life of the openshift-node process) persist even if the openshift-node
process restarts.
Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1427789
|
|\ \
| |/
|/| |
Don't install python-ruamel-yaml
|
| |
| |
| |
| | |
Just rely on PyYAML as a fallback and hope that's there
|
|/ |
|
|\
| |
| | |
raise exceptions when walking through object path
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
if we're given path a.b.c and the existing object is:
a:
b:
- item1
raise an exception due to unexpected objects found while traversing the path (ie. b is a list, not a dict)
also, add_entry assumes new dicts for each sub element when creating elements besides the final assignment value.
doing something like a.b.c[0] = 12 where 'c' doesn't exist raises an exception
add test cases to cover:
access path that differs from existing object
create new objects with an embedded list in the path
create new object with a list at the end (define the end list in the passed in 'value' to avoid this exception)
|
|\ \
| | |
| | | |
Removing the openshift_master_facts dependency
|
| | | |
|
|\ \ \
| | | |
| | | | |
Only set ownership to etcd for thirdparty datadir
|
| |/ /
| | |
| | |
| | | |
Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1428532
|
|\ \ \
| | | |
| | | | |
bug 1420256. Initialize openshift_logging pvc_facts to empty
|
| | | | |
|
|\ \ \ \
| |_|/ /
|/| | | |
Correct config for hosted registry
|
| | | | |
|
|/ / / |
|
|\ \ \
| | | |
| | | | |
Fixing checkout for bindings with -binding suffix
|
| | | | |
|
|\ \ \ \
| |/ / /
|/| | | |
[wip] test fixes for openshift_certificates_expiry
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
- create pytest fixtures for building certs at runtime
- update tests to use the fixtures
- add tests for load_and_handle_cert
- fix py2/py3 encode/decode issues raised by tests
- add get_extension_count method to fakeOpenSSLCertificate
- avoid using a temp file for passing ssl certificate to openssl
subprocess
- other test tweaks:
- exclude conftest.py and tests from coverage report
- reduce the fail_under to 26%, since the tests being included were
inflating our coverage
|
|\ \ \ \
| | | | |
| | | | | |
Leave an empty contiv role directory
|
| |/ / / |
|
|\ \ \ \
| |/ / /
|/| | | |
oadm_policy_group/adm_policy_user module
|
|/ / / |
|
|\ \ \
| |/ /
|/| | |
Fails Installation If Docker Version is Too Old On Atomic Host
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
If the docker version on a master or node is under 1.12 and the OS is an
Atomic Host variant the installation should fail.
Fixes: BZ1425583
|
|\ \ \
| | | |
| | | | |
Fixed error handling when oc adm ca create-server-cert fails. Fixed a logic error in secure.
|
| | | |
| | | |
| | | |
| | | | |
error in secure.
|
|\ \ \ \
| | | | |
| | | | | |
Remove contiv role and playbook from rpm packages
|
|/ / / / |
|
|\ \ \ \
| | | | |
| | | | | |
Pull request for Contiv Ansible code integration into Openshift Ansible
|
| | | | |
| | | | |
| | | | |
| | | | | |
into Openshift Ansible. This is the first (beta) release of Contiv with Openshift and is only supported for Openshift Origin + Bare metal deployments at the time of this commit. Please refer to the Openshift and Contiv official documentation for details of the level of support for different features and modes of operation.
|
|\ \ \ \ \
| |_|/ / /
|/| | | | |
Bug 1427003: Failed to add masters if openshift_master_ca_certificate is defined
|
| | | | | |
|
| | | | | |
|
|\ \ \ \ \
| | | | | |
| | | | | | |
Add FIS templates
|
| | | | | | |
|
| | | | | | |
|
| | | | | | |
|
|\ \ \ \ \ \
| | | | | | |
| | | | | | | |
Adding support for a route with reencrypt and certificates.
|
| | | | | | | |
|
| | | | | | | |
|
| | | | | | | |
|
| | | | | | | |
|
| | | | | | | |
|
| | | | | | | |
|
| | | | | | | |
|
| | | | | | | |
|