cheshire
/
hscloud
forked from hswaw/hscloud
1
0
Fork 0
Code Pull Requests Activity
1,230 Commits
1 Branch
0 Tags
55 MiB
Commit Graph

1230 Commits (63ce423ebbd7afd4575fb02677e5e81c681b037d)

Author SHA1 Message Date
q3k dad166800e cebulacamp/landing: update for 2021 
Change-Id: I3f740ec0f7c6873905fb520d1d5803a5d999e6f0
 2021-05-12 21:41:11 +00:00
q3k 9d05db751c Merge "hswaw/kube: add cebula.camp" 2021-05-12 21:29:41 +00:00
q3k f98ec010fc Merge "cebulacamp/landing: build and push backend" 2021-05-12 21:29:17 +00:00
q3k a1cbb18fba Merge "cebulacamp/landing: rewrite to plain html and css" 2021-05-12 21:28:48 +00:00
q3k de81b1eb84 Merge "hswaw/cebulacamp/landing: import from github.com/cebulacamp/queens-landing" 2021-05-12 21:28:38 +00:00
q3k 95ba05d970 hswaw/kube: add cebula.camp 
Change-Id: I7659640d4a1445b828a944769aa6d9a08bcd7bbe
 2021-05-12 21:28:10 +00:00
q3k b9ed123ff2 cebulacamp/landing: build and push backend 
Change-Id: I1336fb2fe52de7c42e5de0c4f1e05f42c32a9777
 2021-05-12 21:16:18 +00:00
q3k 69c7f99810 cebulacamp/landing: rewrite to plain html and css 
We don't have pug/scss in Bazel/hscloud, so we just go ahead and rewrite
this to the lowest common denominator of web technologies.

Alternatively, we could at least go for gcss, which does have Bazel
rules - but it's probably not worth the effort.

Change-Id: I379157d8fd8682c4bcb87768e9cfe1f051fe9033
 2021-05-12 21:11:50 +00:00
q3k ed27a8bd7d hswaw/cebulacamp/landing: import from github.com/cebulacamp/queens-landing 
License: WTFPL

At commit: c9b43f5c1e69d6d263a8380a15372bd7d3497ac2

Change-Id: Iedad211589438569c0288c1cc3c2a67846bfcac6
 2021-05-12 21:11:50 +00:00
q3k 87ede25bec bgpwtf/invoice: format for non-eu customers 
Change-Id: I42ec23d911cd69a310a6de8ffe5dca5ff1b30f00
 2021-05-12 21:09:47 +00:00
q3k 8a572cd36a Merge "devtools/ci/remote-cache: init" 2021-05-12 21:09:00 +00:00
q3k 4999dc4b7a Merge "third_party/go: add minio client lib" 2021-05-12 21:08:34 +00:00
q3k ab1f7dc924 app/matrix: 0x3c: fix secret name 
Change-Id: Ifc519c068eb2af4ca1462d438c7b7050d9c0b2d8
 2021-05-12 21:07:07 +00:00
Norbert Szulc a6e1b8dd1d Bump version of "io_bazel_rules_docker" 
This presumably enables build on bazel 4.0.0 outside of nix install

Change-Id: I5acab20a20bc0fb63f20208a86c573529ce65c75
 2021-05-12 14:17:31 +02:00
q3k fa818da7c6 bgpwtf/invoice: add recurrent billing tool 
Change-Id: Ic3cc03d7b04304ae8c7aa76d8bb889ae8c144838
 2021-05-06 00:12:53 +02:00
q3k 605aadbfa4 Merge "bgpwtf/invoice: render SP/GTU codes on invoices" 2021-05-05 20:48:12 +00:00
implr 474e0d1c2c personal/implr: more vpn 
Change-Id: I4918a7b7fbae3da71e61a23e7f5fbe37e5db61f8
 2021-04-30 20:07:51 +02:00
q3k 101747d1df Merge "app/matrix: update mautrix image" 2021-04-21 18:39:54 +00:00
q3k ffb80d0ed6 bgpwtf: add ar's ssh keys to routers 
Change-Id: I87247136052b5b7077cb7eed33f13b60b81b898e
 2021-04-19 07:11:26 +00:00
q3k 0ec06d7b75 ops: update deploy instructions to include profile set 
This is necessary for the NixOS EFI boot machinery to pick up the new
derivation when switching to it, otherwise the machine will not boot
into the newly switched configuration.

Change-Id: I8b18956d2afeea09c38462f09a00c345cf86f80d
 2021-04-18 18:13:33 +00:00
q3k c3ca29512a app/matrix: update mautrix image 
The old image disappearified from their registry:

httpReaderSeeker: failed open: content at https://dock.mau.dev/v2/tulir/mautrix-telegram/manifests/sha256:dc95be8f9cd7c226686bcd8be52872cdc20de6751b5eb9f10c6db87ec478b1ca not found: not found

This is the current latest image. Production (at least
matrix.hackerspace.pl) has been updated.

Change-Id: I754b13f08b569e717295fb48d36c0e6544438aa4
 2021-04-10 11:15:31 +00:00
q3k 3df9d0c082 personal/q3k/shipstuck: free! for now. 
Change-Id: Ie4125396a328b5bb05dea88b6d49d79360221905
 2021-03-29 14:26:08 +00:00
q3k ec1aa355fe personal/q3k/shipstuck: fix caching log (why did go let me do this?) 
Change-Id: I1c299af41e0bccd33b2a180602a1b6c5d942ffc8
 2021-03-29 13:40:59 +00:00
q3k a4ae66b4ac personal/q3k/shipstuck: add TOWED 
Change-Id: I3348fc0730a66c3c64df00f6d3051656bf12e587
 2021-03-29 13:38:45 +00:00
q3k e9c56b581f personal/q3k/shipstuck: science 
Change-Id: I382004def6a490e5bfc8a9e8b30b6d9890b633b0
 2021-03-28 20:05:10 +00:00
q3k 99b91b11f1 cluster/k0/admitomatic: add .hswaw.net to hswaw-prod namespace 
This was preventing certificate refresh in the hswaw-prod mirko ingress.

Change-Id: I14b18b642a3948a9864e2d9a90b2a2b2c145b9b1
 2021-03-28 17:34:34 +00:00
q3k 5da0494b3b personal/q3k/shipstuck: fix time of incident 
istheshipstillstuck.com is wrong!

Change-Id: Ie0c7c29d97f620f294a307e950e4d590fbca1e79
 2021-03-27 16:37:22 +00:00
q3k 5c1ab3c62d personal/q3k/shipstuck: fix detection 
Change-Id: I888eaa95c0012830219bd06fd4d16e66204e2e1d
 2021-03-27 15:58:16 +00:00
q3k 772a133ca1 bgpwtf/invoice: render SP/GTU codes on invoices 
Change-Id: I2f47595c67ae0c945fa680b394cb7d5212cd389a
 2021-03-27 15:58:03 +00:00
q3k 3d116b2952 personal/q3k: door^Wship stuck 
Change-Id: I189fc13971d46790634804c3fa1b54e2c4788273
 2021-03-27 15:44:15 +00:00
q3k 7967ca177b cluster/certs: update k0 certs 
This leaves us with the next set of expiring certs in September 2021.

Fixes b/36.

Change-Id: I536497626c0dd3807fccf28d4b61e5e531cf8d9c
 2021-03-27 12:19:25 +00:00
q3k c8b14e75d7 dc/hbj11/flasher: fix build 
Change-Id: Ic59ad67ab0cf1a5a1c5c83a03936868ad3c89c2f
 2021-03-27 12:19:00 +00:00
q3k 41b882d053 cluster: remove bc01n03 certs/secrets 
Decomissioned node, noticed while rolling over certs in b/36.

Change-Id: Ia386ff846998c52799662179c325b24e78f2eca8
 2021-03-27 12:18:56 +00:00
q3k ef3d7b89e0 dc/hbj11/flasher: fix manufacturer name 
Apparently, at least parts of the M610 (eg. iDRAC) attempt to index
exact bytes from the FRU EEPROM instead of parsing it, and thus were
parsing our FRU's manufacturer/product name wrong. This fixes that.

Change-Id: I18d62ea79df7b7bf30cec3251da2c32d25b73507
 2021-03-25 18:55:34 +00:00
q3k d73dc0e253 Merge "cluster/k0: add dns crdb user" 2021-03-25 18:22:07 +00:00
q3k 2e8d24b84a cluster/kube: bump nginx-ingress-controller, backport openssl 1.1.1k 
This fixes CVE-2021-3450 and CVE-2021-3449.

Deployed on prod:

$ kubectl -n nginx-system exec nginx-ingress-controller-5c69c5cb59-2f8v4 -- openssl version
OpenSSL 1.1.1k  25 Mar 2021

Change-Id: I7115fd2367cca7b687c555deb2134b22d19a291a
 2021-03-25 18:16:13 +00:00
q3k aa131447e5 Merge "cluster/crdb: make init job 'idempotent'" 2021-03-25 17:43:14 +00:00
q3k 1632aaee04 dc/hbj11: link to public WebI2C instance 
Change-Id: I0d7092314dcc9aed488e1ffdf3d51566848e3fff
 2021-03-23 15:54:17 +00:00
q3k 56c262f2b6 devtools/hackdoc: serve JS with correct mimetype 
This allows us to serve rich content from hackdoc, eg. hbj11's
webflaser.

Change-Id: Ife83888d864db0b2eddf3a50b0129be0172aad8a
 2021-03-23 15:50:51 +00:00
ar a025e63263 Add bazel error log to .gitignore 
Change-Id: I73212500b9a812141b54e2664aa112a3a408061c
 2021-03-21 22:25:09 +01:00
q3k f4d02581f6 doc/codelabs: fix typo in checking-out.md 
Change-Id: I9729d984974a930630b51657ce5f345fd0f512f7
 2021-03-21 14:16:34 +01:00
q3k 9305e31725 doc/codelabs/: fix broken commands in your-first-change 
Change-Id: I7b3f35eb71d72f2a44fb12ec3a441404ea607b8c
 2021-03-21 14:13:18 +01:00
q3k 2fd9019f15 doc/codelabs: add getting-started/checking-out 
Change-Id: I64d6be74194a902601fd2ff6121b7232353ec8ed
 2021-03-21 14:05:48 +01:00
q3k 5de0b32e3b devtools/ci/remote-cache: init 
This is a first pass at a Bazel remote cache. It notably does not yet do
any authentication, upload limits or garbage collection.

We won't be deploying it to prod until these are done.

Change-Id: I70a89dbe8b3ec933b2ce82e234a969e8337ba1d9
 2021-03-20 13:15:18 +00:00
q3k 87801be432 third_party/go: add minio client lib 
This adds github.com/minio/minio-go, a library that can be used to
access S3-like storage, eg. our own radosgw. It's significantly lighter
than the entire Go AWS SDK, and seems to also be more idiomatic than it.

Change-Id: I1e18c7665b58480fb72e789692aa7f37816cd28f
 2021-03-20 12:05:34 +00:00
q3k 162fcc328d Merge "devtools/gerrit: backport reviewiers column fix to 3.3.2" 2021-03-18 19:54:47 +00:00
q3k 146c99e58e devtools/gerrit: backport reviewiers column fix to 3.3.2 
Gerrit 3.3.1 seems to have introduced a bug which makes the reviewers
column in the dashboard entry: https://bugs.chromium.org/p/gerrit/issues/detail?id=13899

This adds an override of gerrit.war to our Docker containers. The .war
is pulled over HTTP. It has been manually built by q3k from a source
checkout. The details on how this was done are in the WORKSPACE
http_file archive.

Once 3.3.3 lands we should get rid of it.

Change-Id: I8b64103cb87d8b185ff35165695a18cb19fea523
 2021-03-18 19:51:33 +00:00
q3k 5d2a70ac92 bgpwtf/machines: add netboot.xyz to bootstrap 
This allows us to selectively boot some DC machines into netboot.xyz for
testing.

Change-Id: I5713b220ee986c3584fc68efaa7540bbe99680ba
 2021-03-18 19:22:41 +00:00
q3k a0332a75a0 ops/machines: pin edge01.waw to its current version of nixpkgs 
Stopgap until we finish b/3, need to deploy some changes on it without
rebooting into newer nixpkgs.

Change-Id: Ic2690dfcb398a419338961c8fcbc7e604298977a
 2021-03-18 19:22:41 +00:00
q3k bf266c6aaf cluster/k0: add dns crdb user 
In preparation for running PowerDNS on k0.

Change-Id: I853c7465a6a32d02628fa6cfdeb445eb9937b3be
 2021-03-17 21:49:00 +00:00