diff options
| author | Julia Kreger <juliaashleykreger@gmail.com> | 2021-11-18 14:39:28 +0000 |
|---|---|---|
| committer | Julia Kreger <juliaashleykreger@gmail.com> | 2021-11-18 14:39:28 +0000 |
| commit | a71526bf65a5c4992c8470e5536c01445ec9bb64 (patch) | |
| tree | 097b6b5b7f4ac547df072cd1a64bb3dec3a91bfb | |
| parent | 68961df8d57bf9f3fda1d81bbf71bca87a462738 (diff) | |
| download | ironic-a71526bf65a5c4992c8470e5536c01445ec9bb64.tar.gz | |
Revert "CI: Get tinyipa build working for CI usage"
This reverts commit 68961df8d57bf9f3fda1d81bbf71bca87a462738.
Reason for revert: The git command doesn't actually have an
--insecure option when cloaning as we all thought. It appears we
will need to inject an explicit command to set the git config http.sslVerify option to False.
Change-Id: I7ddaba68b8385864805c637c01ba022dd0a3616f
| -rw-r--r-- | devstack/lib/ironic | 7 | ||||
| -rw-r--r-- | releasenotes/notes/dont-use-tinyipa-for-production-620d8c7488c3a677.yaml | 12 |
2 files changed, 0 insertions, 19 deletions
diff --git a/devstack/lib/ironic b/devstack/lib/ironic index 09e6ac919..0f60bf558 100644 --- a/devstack/lib/ironic +++ b/devstack/lib/ironic @@ -2697,13 +2697,6 @@ function build_tinyipa_ramdisk { export AUTHORIZE_SSH=true export SSH_PUBLIC_KEY=$IRONIC_ANSIBLE_SSH_KEY.pub fi - # NOTE(TheJulia): This is insecure. We know it, we don't like it. - # but we need CI to work and we're in a catch-22 as we can't explicitly patch - # this in to the versions used for CI with ussuri and train releases. This is - # because the certificates on qemu.org can no longer be verified since it was - # recently in late October 2021. - sed -i 's/git\ clone\ --branch/git\ clone\ --insecure\ --branch/' build-tinyipa.sh - # Resume our build process. make cp tinyipa.gz $ramdisk_path cp tinyipa.vmlinuz $kernel_path diff --git a/releasenotes/notes/dont-use-tinyipa-for-production-620d8c7488c3a677.yaml b/releasenotes/notes/dont-use-tinyipa-for-production-620d8c7488c3a677.yaml deleted file mode 100644 index 86aaa0dfa..000000000 --- a/releasenotes/notes/dont-use-tinyipa-for-production-620d8c7488c3a677.yaml +++ /dev/null @@ -1,12 +0,0 @@ ---- -issues: - - Users attempting to build older TinyIPA versions for Ussuri and Train - may find that they are unable to do so due to SSL certificate verification - issues. This is not expected to be fixed by the ironic community as we - are unable to release new versions of ironic-python-agent-builder used - by those releases. -other: - - | - As a general reminder and a direct results of attempt to fix Continious - Integration test jobs for Ussuri and Train releases, it must be stressed - to *not* use TinyIPA in production. |