Commit graph

13044 commits

Author SHA1 Message Date
Adam Miller
e5fdab6ea1 osbs: actually add koji_certs_secret to osbs-client role defaults
Signed-off-by: Adam Miller <admiller@redhat.com>
2016-03-31 17:01:38 +00:00
Adam Miller
01c573b623 osbs: add openshift koji secret name to osbs.conf
Signed-off-by: Adam Miller <admiller@redhat.com>
2016-03-31 16:58:19 +00:00
Ralph Bean
4f1a797755 Bump nrpe limits for fedmsg backlog stuff way up. 2016-03-31 15:06:31 +00:00
Ralph Bean
4e32411364 PDC can send two new message types now. 2016-03-31 14:12:10 +00:00
Michael Simacek
38f76fa8e5 Use package module instead of yum in koschei playbooks 2016-03-31 15:55:41 +02:00
Michael Simacek
84c282fe4e Move koschei01.stg to Fedora 23 2016-03-31 15:23:06 +02:00
Adam Williamson
f010264974 openqa/server: try enabling disk image generation, redux
rwmj has refreshed the i686 base image now, so let's try this
again.
2016-03-31 05:56:15 -07:00
aikidouke
120623ed50 fixes for award-lifecycle-badges
Merge branch 'master' of /git/ansible
2016-03-31 12:18:27 +00:00
aikidouke
db53432af3 Adds a loop to allow pulling down the FAS database.
Adds a sleep step after awarding a badge to allow frontend/tahrir to keep up.

Merge branch 'lifecycle-fix'
2016-03-31 12:17:12 +00:00
Patrick Uiterwijk
091e072e59 Enable src.fp.o for production
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
2016-03-31 11:52:27 +00:00
Patrick Uiterwijk
ee4b5edc64 Merge varnish patch to production
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
2016-03-31 11:40:21 +00:00
Adam Williamson
bafd415395 openqa/dispatcher: stupid typo template fix 2016-03-30 17:20:01 -07:00
Adam Williamson
1ef512244d openqa: u-t not needed, more generic compatibility
necessary updates for openqa roles have gone stable for now, so
disable updates-testing usage (keep the plays around commented,
though, since we'll likely need them again in future). Also, a
bit more attempted support for non-infra use: make the monkey
patching of the repo URLs in the test templates only happen if
deployment_type is defined, actually respect the openqa_consumer
var (don't enable the job scheduling consumer unless it's truey)
and only enable any wiki reporting consumer if deployment_type
is defined.
2016-03-30 17:13:57 -07:00
Adam Williamson
8384d1a7a2 Revert "openqa/server: try turning disk image generation back on"
This reverts commit 9872fe3fc8.
Looks like the i686 base image hasn't been refreshed yet, so
i686 image generation still fails. Curses!
2016-03-30 17:02:55 -07:00
Adam Williamson
9872fe3fc8 openqa/server: try turning disk image generation back on
rwmjones says the guestfs / rpm bug has been fixed (a new base
fedora-23 image has been uploaded which should avoid it, anyway)
so let's try turning disk image generation back on and see how
it flies.
2016-03-30 15:55:43 -07:00
Kevin Fenzi
d46d730caa Add fedmsg bot for mktg pagure changes in #fedora-mktg. Ticket 5197 2016-03-30 21:46:05 +00:00
Kevin Fenzi
68d8a1d8c2 Re-add beaker-stg to master playbook 2016-03-30 18:38:17 +00:00
Kevin Fenzi
3a493b7da2 dopr discontinued 2016-03-30 18:05:52 +00:00
Mikolaj Izdebski
cdf5e610f4 Fix faitout URL in apps-fp-o 2016-03-30 17:56:51 +00:00
Kevin Fenzi
dca8eb5b2a Update ssh known hosts 2016-03-30 16:45:18 +00:00
Kevin Fenzi
df32ed1cfa Tweak epylog weed rules some more. Add a few and make some more general. 2016-03-30 15:16:03 +00:00
Kevin Fenzi
109c0ece10 Move some handlers around. Some to just base but some also to base. 2016-03-30 15:06:15 +00:00
aikidouke
6ccf653415 This is my fix for award-lifecycle-badges. Changes;
- Pulling the userlist from fas now loops over each letter of the alphabet to avoid time out issues
- I call time.sleep(60) after awarding a badge to help avoid overwhelming the frontend
2016-03-30 15:05:48 +00:00
Patrick Uiterwijk
e0eef0e7fe ppc-composer is no more
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
2016-03-30 15:02:46 +00:00
Kevin Fenzi
ef8a705432 Don't do updates in playbooks (for a number of reasons).
1. We want all playbooks to be idempotent. If we add things like this
it means the playbook will change every single time we run it.

2. Things like this mean that if we need to change one config or
something to get the service working we may have to wait a long time
for it to apply tons of pending updates, which may break more things.

3. On all Fedora machines (that have base role anyhow) we already run
dnf-automatic to apply all security updates. We could expand that to
apply all updates if you like. Doing them daily is much better for
finding regressions

4. We expect updates are applied normally by dnf-automatic or by
sysadmins so we can know whats in the updates and be ready for issues
or restarting things.
2016-03-30 14:57:54 +00:00
Michael Scherer
edafebe7dc 2016-03-30 14:52:03 +00:00
Kevin Fenzi
792054618a It's ok if this file is missing as it often is in stg (since there are 0 requests). 2016-03-30 14:51:40 +00:00
Kevin Fenzi
dc775203ae We also don't want to track the torrent connections the other direction either. 2016-03-30 14:51:12 +00:00
Patrick Uiterwijk
14735ecde5 Koji arm is at arm.koji.fp.o, not arm.fp.o
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
2016-03-30 12:05:06 +00:00
48f79f67cc GNOME Backups: remove drawable.gnome.org from ssh_config 2016-03-30 08:22:11 +00:00
5dd911cca1 GNOME Backups: extra - 2016-03-30 08:18:01 +00:00
dbaf548ed1 GNOME Backups: make sure the MAILTO environment variable gets populated 2016-03-30 08:13:25 +00:00
Martin Krizek
ffb3dd03df taskotron-trigger: add dockerautotest check 2016-03-30 07:58:39 +00:00
Michael Scherer
3fbee61d30 While /tmp is likely cleaned automatically, any crash in the shell script
would have left over. Using trap should prevent that.
2016-03-29 18:46:05 +00:00
Michael Scherer
b811b3daf4 Since the job is running as root, and on people.fedoraproject.org, it
can be abused by a non admin user using a symlink in /tmp (just a
simple for loop over the pid space would be enough).

Then we can at best erase a almost arbitrary file (using a creative
symlink), or at worst, maybe inject data that could be parsed by a
software (since the content would be under the control of a attacker,
since that's the list of file in a user home directories.
2016-03-29 18:45:58 +00:00
Miroslav Suchý
02156cb213 copr: restart copr-dist-git 2016-03-29 17:36:11 +02:00
Kevin Fenzi
aff689aa27 Fix typo in apps-fp-o that broke proxy playbook run 2016-03-29 13:12:47 +00:00
Kevin Fenzi
d690ca8851 Drop production redirects for prerelease to prep for alpha website. 2016-03-29 12:45:46 +00:00
Miroslav Suchý
bea895099d copr: we need yum, since dnf still cannot handle priority failover 2016-03-29 10:59:14 +02:00
Miroslav Suchý
49f4d0c60e copr: we need yum, since dnf still cannot handle priority failover 2016-03-29 10:57:23 +02:00
Miroslav Suchý
a4a5167f00 copr: this should not be needed anymore 2016-03-29 10:52:17 +02:00
Ralph Bean
564f1b9420 Give bugzilla2fedmsg two more threads. 2016-03-29 01:59:25 +00:00
Ralph Bean
fd9ac09148 Use the full name here. 2016-03-29 01:22:56 +00:00
Kevin Fenzi
c7e9a19e64 Add selinux rule to allow git repos to work on fedorapeople. Ticket #5107 2016-03-28 19:14:01 +00:00
aikidouke
6ede234257 add aikidouke to tahrir.admin 2016-03-28 14:16:18 +00:00
Stephen Smoogen
a8f981967e and we have some ips cleaned up and some ips not 2016-03-25 22:35:20 +00:00
Stephen Smoogen
700a795dd9 add ips to the block list. 2016-03-25 19:47:07 +00:00
Stephen Smoogen
6eab8d438b need to add a list of ips to over use of rsync 2016-03-25 17:38:47 +00:00
31558d8036 backing out lifetime shortening for taskotron-dev, that's not the problem 2016-03-25 16:02:01 +00:00
a448c22689 reducing log and artifact lifetime to save disk on taskotron-dev 2016-03-25 14:52:59 +00:00