| Age | Commit message (Collapse) | Author | Files | Lines | |||
|---|---|---|---|---|---|---|---|
| 2022-04-20 | [MULTICLOUD] Bug fixes in k8splugin |   Lukasz Rajewski | 1 | -1/+1 | |||
| Bug fixes in k8splugin - verification of etcd connection - improved validation of pvc status Issue-ID: MULTICLOUD-1468 Signed-off-by: Lukasz Rajewski <lukasz.rajewski@orange.com> Change-Id: I03690d365d5d5b15805f8ab20b8fa8aeb2935638 | |||||||
| 2022-04-07 | [MULTICLOUD] Changes for Jakarta release |   Bin Yang | 13 | -2FROM golang:1.13 AS build_yq
WORKDIR /go/src/github.com/mikefarah/
RUN git clone https://github.com/mikefarah/yq.git --depth 1
WORKDIR /go/src/github.com/mikefarah/yq
RUN CGO_ENABLED=0 go install -a -ldflags '-w -s -extldflags "-static"'
FROM golang:1.13 AS build_aqua
WORKDIR /go/src/github.com/aquasecurity/
RUN git clone https://github.com/aquasecurity/kube-bench.git --depth 1
WORKDIR /go/src/github.com/aquasecurity/kube-bench
RUN GO111MODULE=on CGO_ENABLED=0 go install -a -ldflags "-w"
FROM golang:1.13 AS build_onap
WORKDIR /opt/onap
RUN git clone https://git.onap.org/integration --depth 1
WORKDIR /opt/onap/integration/test/security/sslendpoints
RUN CGO_ENABLED=0 go install -a -ldflags '-w -s -extldflags "-static"'
FROM opnfv/xtesting AS run
ARG KUBERNETES_VERSION="v1.15.2"
ARG HELM_VERSION="v2.14.1"
ARG ONAP_TAG=master
ARG ONAP_TESTS_TAG=master
# Install kubectl
# Note: Latest version may be found on:
# https://aur.archlinux.org/packages/kubectl-bin/
ADD https://storage.googleapis.com/kubernetes-release/release/${KUBERNETES_VERSION}/bin/linux/amd64/kubectl /usr/local/bin/kubectl
COPY scripts/check_security_root.sh /check_security_root.sh
COPY scripts/check_unlimitted_pods.sh /check_unlimitted_pods.sh
COPY scripts/check_cis_kubernetes.sh /check_cis_kubernetes.sh
COPY scripts/check_versions.sh /check_versions.sh
COPY --from=build_yq /go/bin/yq /usr/local/bin/yq
COPY --from=build_aqua /go/bin/kube-bench /usr/local/bin/kube-bench
COPY --from=build_aqua /go/src/github.com/aquasecurity/kube-bench/cfg/ /cfg/
COPY --from=build_onap /go/bin/sslendpoints /usr/local/bin/sslendpoints
RUN set -x && \
apk --no-cache add --update curl ca-certificates openssl procps util-linux \
nmap nmap-scripts jq && \
apk --no-cache add --virtual .build-deps --update \
python3-dev linux-headers gcc musl-dev && \
chmod +x /usr/local/bin/kubectl && \
git clone --depth 1 https://github.com/aquasecurity/kube-hunter.git /kube-hunter && \
mkdir /check_versions && \
adduser kubectl -Du 2342 -h /config && \
wget https://storage.googleapis.com/kubernetes-helm/helm-${HELM_VERSION}-linux-amd64.tar.gz -O - | tar -xzO linux-amd64/helm > /usr/local/bin/helm && \
wget -O /check_for_nonssl_endpoints.sh https://git.onap.org/integration/plain/test/security/check_for_nonssl_endpoints.sh?h=$ONAP_TAG &&\
wget -O /check_for_jdwp.sh https://git.onap.org/integration/plain/test/security/check_for_jdwp.sh?h=$ONAP_TAG &&\
wget -O /jdwp_xfail.txt https://git.onap.org/integration/seccom/plain/waivers/jdwp_ports/jdwp_xfail.txt?h=$ONAP_TAG &&\
wget -O /nonssl_xfail.txt https://git.onap.org/integration/seccom/plain/waivers/nonssl_endpoints/nonssl_xfail.txt?h=$ONAP_TAG &&\
wget -O /root_pods_xfail.txt https://git.onap.org/integration/seccom/plain/waivers/root_pods/root_pods_xfail.txt?h=$ONAP_TAG &&\
wget -O /check_versions/k8s_bin_versions_inspector.py https://git.onap.org/integration/plain/test/security/check_versions/src/k8s_bin_versions_inspector.py?h=$ONAP_TAG &&\
wget -O /check_versions/requirements.txt https://git.onap.org/integration/plain/test/security/check_versions/env/requirements.txt?h=$ONAP_TAG &&\
wget -O /check_versions/recommended_versions.yaml https://git.onap.org/integration/seccom/plain/recommended_versions.yaml?h=$ONAP_TAG &&\
chmod +x /usr/local/bin/helm && \
chmod +x /usr/local/bin/kube-bench && \
chmod +x /usr/local/bin/sslendpoints && \
chmod +x /check_*.sh && \
pip3 install --upgrade pip && \
pip3 install --no-cache-dir \
git+https://gerrit.onap.org/r/integration/xtesting@$ONAP_TESTS_TAG#subdirectory=security && \
cd /kube-hunter && pip3 install -r /kube-hunter/requirements.txt && \
pip3 install -r /check_versions/requirements.txt && \
apk del .build-deps
COPY docker/testcases.yaml /usr/lib/python3.8/site-packages/xtesting/ci/testcases.yaml
CMD ["run_tests", "-t", "all"]
|   Konrad Bańka | 1 | -1/+1 |
| Update k8splugin with version based on Helm3 libraries Issue-ID: MULTICLOUD-1295 Issue-ID: MULTICLOUD-1338 Issue-ID: MULTICLOUD-1348 Signed-off-by: Konrad Bańka <k.banka@samsung.com> Change-Id: I793ccc0366fc061c5f0cb1e580e805de70b3d88a | |||||||
| 2021-04-16 | [MULTICLOUD] Update k8splugin image | Konrad Bańka | 1 | -1/+1 | |||
| Update k8splugin image with one containing Honolulu RC2 Bugfixes: MULTICLOUD-1311, MULTICLOUD-1308, MULTICLOUD-1307. Issue-ID: MULTICLOUD-1307 Issue-ID: MULTICLOUD-1308 Issue-ID: MULTICLOUD-1311 Issue-ID: MULTICLOUD-1295 Signed-off-by: Konrad Bańka <k.banka@samsung.com> Change-Id: I97c7a263e81453d1db710fe5121f3f3720cb06ca | |||||||
| 2021-03-26 | [MULTICLOUD] Remove multicloud-azure from release |   Krzysztof Opasiak | 9 | -412/+0 | |||
| multicloud-azure is descoped from H release Issue-ID: MULTICLOUD-1309 Signed-off-by: Bin Yang <bin.yang@windriver.com> Change-Id: I2350d6fe82ceae4e16ce9e5ef929c6e7d5d42c45 [Instead of disabling let's remove it] Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> | |||||||
| 2021-03-24 | [DOC][COMMON] Prepare Honolulu release |   Sylvain Desbureaux | 18 | -31/+31 | |||
| Updating the documentation and bumping version to 8.0.0 Issue-ID: OOM-1 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I6f942f1466fed64264c44fb8fc0e1ffc93a98f18 | |||||||
| 2021-03-02 | [MULTICLOUD] Update multicloud k8s image to 0.8.0 | Lukasz Rajewski | 1 | -1/+1 | |||
| Update multicloud k8s image to 0.8.0 Issue-ID: MULTICLOUD-1294 Signed-off-by: Lukasz Rajewski <lukasz.rajewski@orange.com> Change-Id: Id8a5ec9d509076f1debcbac6e12dc981c40568ef | |||||||
| 2020-12-09 | [MULTICLOUD] Move components to component dir |   Jakub Latusek | 17 | -0/+6 | |||
| Helm 3.4 requires the dependencies in the charts dir to be included in the requirements. Dependencies need to be moved to the components folder Signed-off-by: Jakub Latusek <j.latusek@samsung.com> Change-Id: I7af44019a47e79e3132142352518c2aa70406422 Issue-ID: OOM-2562 | |||||||
| 2020-11-30 | [COMMON][DOC] Bump version Guilin | Sylvain Desbureaux | 18 | -28/+28 | |||
| Update charts and requirements to 7.0.0. Create release notes for Guilin Update documentation Issue-ID: OOM-2638 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I965ed6b6ebb7d74bfddaff73edd3dd55a657841c | |||||||
| 2020-11-23 | [MULTICLOUD] Uses new tpls for repos / images | Sylvain Desbureaux | 93 | -0/+4731 | |||
| This commit makes Multicloud chart to use the new generator for repositories and images. As new templates doesn't work well with "sub charts", we move also subcharts to components folder. Issue-ID: OOM-2364 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I34049a733bddc6faf7a68e4c768c447b6c2e34b1 | |||||||
 |
index : oom | |
| Introduces the ONAP Platform OOM (ONAP Operations Manager) to efficiently Deploy, Manage, Operate the ONAP platform and its components (e.g. MSO, DCAE, SDC, etc.) and infrastructure (VMs, Containers). | Grokmirror user |
| aboutsummaryrefslogtreecommitdiffstats |