June 2018 - Infra - oVirt List Archives

[JIRA] (OVIRT-1231) Security: do we need HSTS for oVirt services?
by eyal edri (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1231?page=com.atlassian.jira.… ] eyal edri updated OVIRT-1231: ----------------------------- Epic Link: (was: OVIRT-403) > Security: do we need HSTS for oVirt services? > --------------------------------------------- > > Key: OVIRT-1231 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1231 > Project: oVirt - virtualization made easy > Issue Type: New Feature > Reporter: eyal edri > Assignee: infra > > https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security > Most of the browsers already supports it and some websites started to enforce it. > cc [~dfediuck] -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1231) Security: do we need HSTS for oVirt services?
by eyal edri (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1231?page=com.atlassian.jira.… ] eyal edri updated OVIRT-1231: ----------------------------- Epic Link: (was: OVIRT-403) > Security: do we need HSTS for oVirt services? > --------------------------------------------- > > Key: OVIRT-1231 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1231 > Project: oVirt - virtualization made easy > Issue Type: New Feature > Reporter: eyal edri > Assignee: infra > > https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security > Most of the browsers already supports it and some websites started to enforce it. > cc [~dfediuck] -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1495) Check out Gerrit metrics feature to see if we can push stats to graphana
by eyal edri (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1495?page=com.atlassian.jira.… ] eyal edri reassigned OVIRT-1495: -------------------------------- Assignee: Evgheni Dereveanchin (was: infra) > Check out Gerrit metrics feature to see if we can push stats to graphana > ------------------------------------------------------------------------ > > Key: OVIRT-1495 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1495 > Project: oVirt - virtualization made easy > Issue Type: Improvement > Components: Gerrit/git > Reporter: eyal edri > Assignee: Evgheni Dereveanchin > Labels: monitoring, > > Gerrit 2.13 added a new feature that allows sending metrics to an external source like Graphite. > It would be interesting to see if we can push status about our Gerrit instance to our Graphana instance. > More info at: > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1495) Check out Gerrit metrics feature to see if we can push stats to graphana
by eyal edri (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1495?page=com.atlassian.jira.… ] eyal edri updated OVIRT-1495: ----------------------------- Labels: monitoring, (was: ) > Check out Gerrit metrics feature to see if we can push stats to graphana > ------------------------------------------------------------------------ > > Key: OVIRT-1495 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1495 > Project: oVirt - virtualization made easy > Issue Type: Improvement > Components: Gerrit/git > Reporter: eyal edri > Assignee: infra > Labels: monitoring, > > Gerrit 2.13 added a new feature that allows sending metrics to an external source like Graphite. > It would be interesting to see if we can push status about our Gerrit instance to our Graphana instance. > More info at: > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1495) Check out Gerrit metrics feature to see if we can push stats to graphana
by eyal edri (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1495?page=com.atlassian.jira.… ] eyal edri updated OVIRT-1495: ----------------------------- Component/s: Gerrit/git > Check out Gerrit metrics feature to see if we can push stats to graphana > ------------------------------------------------------------------------ > > Key: OVIRT-1495 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1495 > Project: oVirt - virtualization made easy > Issue Type: Improvement > Components: Gerrit/git > Reporter: eyal edri > Assignee: infra > > Gerrit 2.13 added a new feature that allows sending metrics to an external source like Graphite. > It would be interesting to see if we can push status about our Gerrit instance to our Graphana instance. > More info at: > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1495) Check out Gerrit metrics feature to see if we can push stats to graphana
by eyal edri (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1495?page=com.atlassian.jira.… ] eyal edri updated OVIRT-1495: ----------------------------- Epic Link: (was: OVIRT-403) > Check out Gerrit metrics feature to see if we can push stats to graphana > ------------------------------------------------------------------------ > > Key: OVIRT-1495 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1495 > Project: oVirt - virtualization made easy > Issue Type: Improvement > Reporter: eyal edri > Assignee: infra > > Gerrit 2.13 added a new feature that allows sending metrics to an external source like Graphite. > It would be interesting to see if we can push status about our Gerrit instance to our Graphana instance. > More info at: > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1495) Check out Gerrit metrics feature to see if we can push stats to graphana
by eyal edri (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1495?page=com.atlassian.jira.… ] eyal edri updated OVIRT-1495: ----------------------------- Epic Link: (was: OVIRT-403) > Check out Gerrit metrics feature to see if we can push stats to graphana > ------------------------------------------------------------------------ > > Key: OVIRT-1495 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1495 > Project: oVirt - virtualization made easy > Issue Type: Improvement > Reporter: eyal edri > Assignee: infra > > Gerrit 2.13 added a new feature that allows sending metrics to an external source like Graphite. > It would be interesting to see if we can push status about our Gerrit instance to our Graphana instance. > More info at: > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… > https://gerrit-documentation.storage.googleapis.com/Documentation/2.13/metr… -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1866) Use PERFORMANCE_OPTIMIZED pipelines instead of MAX_SURVIVABILITY
by Barak Korren (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1866?page=com.atlassian.jira.… ] Barak Korren updated OVIRT-1866: -------------------------------- Epic Link: (was: OVIRT-400) > Use PERFORMANCE_OPTIMIZED pipelines instead of MAX_SURVIVABILITY > ---------------------------------------------------------------- > > Key: OVIRT-1866 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1866 > Project: oVirt - virtualization made easy > Issue Type: Improvement > Components: Jenkins Master > Reporter: Daniel Belenky > Assignee: infra > Labels: jenkins > > It seems that pipelines now have support to configure their behavior of serialization of objects, and since we know that this serialization never worked for us as we'd expect it to, maybe we should consider using PERFORMANCE_OPTIMIZED mode which will avoid serializing and maybe boost the performance. > [Link to subject in jenkincci-dev google|https://groups.google.com/forum/#!msg/jenkinsci-dev/F4zcOWLI32w/51qi…] -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1866) Use PERFORMANCE_OPTIMIZED pipelines instead of MAX_SURVIVABILITY
by Barak Korren (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1866?page=com.atlassian.jira.… ] Barak Korren updated OVIRT-1866: -------------------------------- Epic Link: (was: OVIRT-400) > Use PERFORMANCE_OPTIMIZED pipelines instead of MAX_SURVIVABILITY > ---------------------------------------------------------------- > > Key: OVIRT-1866 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1866 > Project: oVirt - virtualization made easy > Issue Type: Improvement > Components: Jenkins Master > Reporter: Daniel Belenky > Assignee: infra > Labels: jenkins > > It seems that pipelines now have support to configure their behavior of serialization of objects, and since we know that this serialization never worked for us as we'd expect it to, maybe we should consider using PERFORMANCE_OPTIMIZED mode which will avoid serializing and maybe boost the performance. > [Link to subject in jenkincci-dev google|https://groups.google.com/forum/#!msg/jenkinsci-dev/F4zcOWLI32w/51qi…] -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0

[JIRA] (OVIRT-1867) Allow embedded secrets inside the source repo for CI
by Barak Korren (oVirt JIRA) 12 Jun '18

12 Jun '18

[ https://ovirt-jira.atlassian.net/browse/OVIRT-1867?page=com.atlassian.jira.… ] Barak Korren updated OVIRT-1867: -------------------------------- Epic Link: (was: OVIRT-400) > Allow embedded secrets inside the source repo for CI > ---------------------------------------------------- > > Key: OVIRT-1867 > URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1867 > Project: oVirt - virtualization made easy > Issue Type: New Feature > Components: Standard CI (Pipelines), STDCI DSL > Reporter: Roman Mohr > Assignee: infra > Labels: credentials > > In order to improve the self-service capabilities of standard-ci it is > important for projects, that they can add their own secrets to projects (to > reach external services, e.g. docker hub, ...). > Travis has a very nice system which helps engineers there: > https://docs.travis-ci.com/user/encryption-keys/ > Basically the CI system needs to generate a public/private key pair for > every enabled git repo. The engineer simply fetches the public key via a > well know URL and encrypts the secrets. Then the encrypted secret can be > made part of the source repo. Before the tests are run the CI system > decrypts the secrets. Than can play together pretty well with Jenkinsfiles > too. > Benefit: > * Less manual intervention from CI team to add secrets to jobs > * Strengthen the config-in-code thinking -- This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100087)

1 0