| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
| |
The mock third party library was needed for mock support in py2
runtimes. Since we now only support py36 and later, we can use the
standard lib unittest.mock module instead.
Change-Id: I7b97fab683e45118327b93c776f8c487feab7374
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is an interim commit of the changes for secure
oslo-messaging.rpc. In this commit we introduce the code for
serializers that will encrypt all traffic being sent on
oslo_messaging.rpc.
Each guest communicates with the control plane with traffic encrypted
using a per-instance key. This includes both traffic from the
taskmanager to the guest as well as the guest and the conductor.
Per-instance keys are stored in the infrastructure database. These
keys are further encrypted in the database.
Tests that got annoyed have been placated.
Upgrade related changes have been proposed. If an instance has no key,
no encryption is performed. If the guest gets no key, it won't
encrypt, just pass through. When an instance is upgraded, keys are
added.
The output of the trove show command (and the show API) have been
augmented to show which instances are using secure RPC communication
** if the requestor is an administrator **.
A simple caching mechanism for encryption keys has been proposed; this
will avoid the frequent database access to get the encryption
keys. For Ocata, to handle the upgrade case, None as an encryption_key
is a valid one, and is therefore not cached. This is why we can't use
something like lrucache.
A brief writeup has been included in dev docs
(dev/secure_oslo_messaging.rst) which shows how the feature can be
used and would help the documentation team write up the documentation
for this capability.
Change-Id: Iad03f190c99039fd34cbfb0e6aade23de8654b28
DocImpact: see dev/secure_oslo_messaging.rst
Blueprint: secure-oslo-messaging-messages
Related: If0146f08b3c5ad49a277963fcc685f5192d92edb
Related: I04cb76793cbb8b7e404841e9bb864fda93d06504
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Defines and implements create|end|error notifications for
all state-changing Trove API calls. Adds a notification to
the TroveContext to transfer the notification to the guest
and conductor so that errors on asynchronous commands can
be forwarded to the Conductor to be transferred to the
control plane bus.
Also did some cleanup on the existing notifications to bring
them all under a common framework in trove/common/notifications.py.
The trove.instance.exists notification was not integrated into
the new framework due to its close-coupling with the Nova
notification code.
Reworked the cluster action mechanism to move routing
functionality from the strategy to the Cluster base
class. This was done to support tying notifications
to cluster specific actions.
Implements Blueprint: ceilometer-integration
Change-Id: I9c57d24f80d8d3116fc0cc8948094087a0495135
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a instance => an instance
occured => occurred
nessesary => necessary
temprary => temporary
Excercise => Exercise
preceeding => preceding
nu,ber => the number
Remove unnecessary 'a'
Change-Id: I9df2de6178bc73a05fea936fa2a3f26c3e6c09d3
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patchset helps reducing the ignored pep8 errors.
Fixed some ignored hacking rules, as listed follows:
- E111 indentation is not a multiple of four
- E122 continuation line missing indentation or outdented
- E123 closing bracket does not match indentation of opening bracket's line
- E128 continuation line under-indented for visual indent
- E251 unexpected spaces around keyword / parameter equals
- E265 block comment should start with '# '
- E713 test for membership should be 'not in'
- H105 Don't use author tags
- H306 imports not in alphabetical order
Change-Id: Iadf2af4f6ec90420153ad63b5a41650392ef2cbd
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Make all test suites in the module extend
'trove_testtools.TestCase' to enable dangling mock detector.
There was also a need to add a mocked entry to
upgrade/test_models.py. Previous implementation was
working because of leaked mock from guestagent/test_api.py
Needed an update to guestagent/test_vertica_api.py which was
earlier passing because of leaked mock from guestagent/test_api.py.
Change-Id: If8d654c3a6d2f47d2a4ffa70bab72201dd053226
Partial-Bug: 1448273
|
|
|
|
|
|
|
|
|
|
|
|
| |
Make all test suites in the module extend 'trove_testtools.TestCase' to
enable dangling mock detector.
I also rewrote tests for 'create()' method of 'UpgradeMessageSender'.
The original implementation tested the Mock library rather than the
Trove code.
Change-Id: I862b9b6c3dbca1958f314b169863cdbeeb7e3b53
Partial-Bug: 1448273
|
|
Added optional metadata param to API
1. Changed route to {tenant_id}/mgmt/instances/{instance_id}/upgrade
2. Changed POST body to send properties inside an upgrade dict
3. Removed unimplemented method from guest agent manager
4. Swap out rpc call to use _cast
5. Removed instance_id from rpc call
6. Removed strategy from api calls
7. Switched out import of guestagent api in favor of common.remote
8. Rename UpgradeNotifier to UpgradeMessageSender
Change-Id: I12d09fd70ab028da1cd2818fe380310e99b66d2d
Implements: blueprint upgrade-guestagent
Closes-Bug: #1211924
|