Skip to content
This repository was archived by the owner on Dec 17, 2025. It is now read-only.

Add openvswitch-ipsec service image#1

Open
OgarOgarovic wants to merge 16 commits intomasterfrom
dev/add-openvswitch-ipsec
Open

Add openvswitch-ipsec service image#1
OgarOgarovic wants to merge 16 commits intomasterfrom
dev/add-openvswitch-ipsec

Conversation

@OgarOgarovic
Copy link
Collaborator

@OgarOgarovic OgarOgarovic commented Sep 24, 2024

  • openvswitch-ipsec image for IPsec encryption of node to node communication
  • epic
  • sibling kolla-ansible PR
  • accompanying ADR
  • previous version in a private repo here

fdobrovolny and others added 11 commits September 4, 2024 16:29
@fdobrovolny @OgarOgarovic
#591 - WIP: Add OVS IPSec image
696b4fe
@fdobrovolny @OgarOgarovic
#591 - WIP: Add OVS IPSec image
04fa2c3
@fdobrovolny @OgarOgarovic
591 - WIP: Add OVS IPSec - fix debian install
4ff7c80 
Change-Id: Idb4b87c0c1de6323cd1fab9b81e00a358bf64553
@OgarOgarovic
Replace supervisord with s6-overlay
a333633 
Also adding libreswan to debian based images
@OgarOgarovic
Fix download url and version variables
2caae49
@OgarOgarovic
Add s6-overlay definition for the services
30b38be 
The directory structure defines oneshot and longrun
processes to run for the openvswitch-ipsec service
@OgarOgarovic
Fixes and updates for ipsec dockerfile and s6-overlay definitions
76569a9
@OgarOgarovic
Remove wrong NSS dir switch for pluto
0915fcd 
It was previously the solution for non-functioning original
implementation with supervisord, but now the --checknss
ipsec command is initializing the database in the default
location - /var/lib/ipsec
@OgarOgarovic
Fix ipsec monitor command argument
684029a
@OgarOgarovic
Fix s6-overlay process supervision definition
ea5fad9 
Added the original kolla_start entrypoint as oneshot
for the certificates copy. The image CMD needs to be
empty because any short lived process here will
keep restarting the whole container.
@OgarOgarovic
Fix services run commands and a typo in definition folder name
f34ec67
@OgarOgarovic OgarOgarovic changed the title Dev/add openvswitch ipsec Add openvswitch-ipsec service image Sep 24, 2024
@matofeder matofeder self-requested a review September 24, 2024 08:15
@matofeder matofeder mentioned this pull request Sep 24, 2024
Open
OgarOgarovic and others added 5 commits September 26, 2024 12:47
@OgarOgarovic
Merge branch 'master' into dev/add-openvswitch-ipsec
cafb3aa
@mnasiadka
dev-mode: Run kolla_install_projects using sudo
0644a5d 
Since packages are installed using root during image build - we
need to use sudo when updating those packages when using dev-mode.

Change-Id: Idf14e334d50abeb1719563b1733af0b8425b3b55
@bbezak @openstack-gerrit
Revert "Pin OpenSearch Dashboards to 2.15"
c862b07 
This reverts commit 3c49991.

Reason for revert: bug fixed upstream opensearch-project/OpenSearch-Dashboards#8097

Change-Id: Icc810554dc877c9dedaf26609d59a93059a38ba7
@openstack-gerrit
Merge "Revert "Pin OpenSearch Dashboards to 2.15""
382a467
@OgarOgarovic
Merge branch 'master' into dev/add-openvswitch-ipsec
ef1228b
@OgarOgarovic
Copy link
Collaborator Author

OgarOgarovic commented Sep 28, 2024

Change proposed upstream - kolla/930804

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@matofeder matofeder Awaiting requested review from matofeder

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@OgarOgarovic @fdobrovolny @mnasiadka @bbezak