Have Dockerfile add a few rpms needed for "oc rsync" and "oc rsh" diagnostics.
Reduce default verbosity to -vv to avoid flooding logs with traversal msgs.
Reduce scanner concurrency to 3, considering limited cpu resources on .stg.
git shortlog 665c80047a7c15145faa8d77b60fadd2feebb1e1..be75c716bae720c45e720f8e1cecab01f4355bd3
Owen W. Taylor (4):
Make code to handle disconnections shared between DeltaGenerator and Differ
Indexer: Remove unchanged-registry-data short-circuit
Cleaner: check for and remove dangling tardiff:result objects
Differ: Handle the case where a queued task references a missing spec
Redis is configured to store its data in /data, so mount the persistent
volume there rather than on /var/lib/redis/data.
Signed-off-by: Owen W. Taylor <otaylor@fishsoup.net>
The baseiptables variable controls if the base role should apply base
iptables and ip6tables templates to a host. In the case of OpenShift we
DO NOT WANT it to do this. The base iptables template doesn't handle all
the container native rules and setup that OpenShift needs to work.
This has caused multiple outages by applying this template on the
OpenShift nodes. So, set it to false here and keep it false please. :)
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
For ages buildvm-s390x-01.stg.s390.fedoraproject.org has needed it's ssh
key accepted on ansible runs. The problem was we were not extending the
cert authority to handle this subdomain. This commit fixes that.
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
Currently /etc/nsswitch.conf has configurations like
passwd: sss files
shadow: files sss
group: sss files
The problem is that to make sure that certain users could not be
created in IPA (like nobody root etc), they were already created but
in a restricted group. In order to allow sss to work for postfix, nfs,
nobody and such, the sssd.conf needs to ignore them in the nss
section. This adds a file which will do that.
Signed-off-by: Stephen Smoogen <smooge@smoogespace.com>
* Update rsync configuration for production to sync the flatpak-indexer
output directories into the right place, in the same way as was done
for staging. The regindexer rsync module is renamed to flatpak-index
for clarity.
* Update the registry.fedoraproject.org to use the flatpak-indexer
rules for production.
* Remove the regindexer role
Signed-off-by: Owen W. Taylor <otaylor@fishsoup.net>
