]> git.openstreetmap.org Git - chef.git/log
chef.git
4 years agoDisable firewall on gorwen and rimfaxe
Tom Hughes [Mon, 21 Sep 2020 21:15:44 +0000 (22:15 +0100)]
Disable firewall on gorwen and rimfaxe

4 years agoSwitch to installing prometheus exporters from a custom git repository
Tom Hughes [Mon, 21 Sep 2020 19:18:53 +0000 (19:18 +0000)]
Switch to installing prometheus exporters from a custom git repository

4 years agoUse ffdhe2048 DH parameters from RFC 7919
Tom Hughes [Mon, 21 Sep 2020 18:30:10 +0000 (19:30 +0100)]
Use ffdhe2048 DH parameters from RFC 7919

Taken from latest Mozilla recomendations which prefer those
over generating your own parameters.

4 years agoUpdate chef client to 16.5.64
Tom Hughes [Sun, 20 Sep 2020 11:53:21 +0000 (12:53 +0100)]
Update chef client to 16.5.64

4 years agoWorkaround apparent bug in chef-client 16.5
Tom Hughes [Sun, 20 Sep 2020 10:25:38 +0000 (10:25 +0000)]
Workaround apparent bug in chef-client 16.5

4 years agoGo back to unmounting resolv.conf but prevent path canonicalisation
Tom Hughes [Sun, 20 Sep 2020 09:42:19 +0000 (09:42 +0000)]
Go back to unmounting resolv.conf but prevent path canonicalisation

4 years agoAdd memcached exporter
Tom Hughes [Sun, 20 Sep 2020 09:01:59 +0000 (09:01 +0000)]
Add memcached exporter

4 years agoFix cookstyle warnings
Tom Hughes [Sat, 19 Sep 2020 14:49:10 +0000 (15:49 +0100)]
Fix cookstyle warnings

4 years agoUpdate for changes in apache exporter
Tom Hughes [Sat, 19 Sep 2020 14:48:16 +0000 (15:48 +0100)]
Update for changes in apache exporter

4 years agoSwitch to installing prometheus exporters from github
Tom Hughes [Sat, 19 Sep 2020 14:08:29 +0000 (14:08 +0000)]
Switch to installing prometheus exporters from github

4 years agoFix typo
Tom Hughes [Sat, 19 Sep 2020 06:33:46 +0000 (07:33 +0100)]
Fix typo

4 years agoAttempt to fix test failures caused by crazy docker networking
Tom Hughes [Fri, 18 Sep 2020 21:55:31 +0000 (22:55 +0100)]
Attempt to fix test failures caused by crazy docker networking

4 years agoEnable process and interrupt collectors for the node exporter
Tom Hughes [Fri, 18 Sep 2020 21:35:12 +0000 (22:35 +0100)]
Enable process and interrupt collectors for the node exporter

4 years agoSilence update-smart-drivedb updates
Grant Slater [Fri, 18 Sep 2020 21:01:44 +0000 (22:01 +0100)]
Silence update-smart-drivedb updates

4 years agoFix update-smart-drivedb cron template issue
Grant Slater [Fri, 18 Sep 2020 20:58:00 +0000 (21:58 +0100)]
Fix update-smart-drivedb cron template issue

4 years agoRun smartmontools update-smart-drivedb occasionally
Grant Slater [Fri, 18 Sep 2020 20:54:52 +0000 (21:54 +0100)]
Run smartmontools update-smart-drivedb occasionally

4 years agoUpdate ruby-version to 2.7.1
Grant Slater [Fri, 18 Sep 2020 20:28:36 +0000 (21:28 +0100)]
Update ruby-version to 2.7.1

4 years agoEstabish tunnels between shenron and gateway machines
Tom Hughes [Fri, 18 Sep 2020 18:20:13 +0000 (19:20 +0100)]
Estabish tunnels between shenron and gateway machines

4 years agoTarget ruby 2.7 as that is what chef 16 uses
Tom Hughes [Fri, 18 Sep 2020 07:26:28 +0000 (08:26 +0100)]
Target ruby 2.7 as that is what chef 16 uses

4 years agoFix new cookstyle warnings
Tom Hughes [Fri, 18 Sep 2020 07:25:58 +0000 (08:25 +0100)]
Fix new cookstyle warnings

4 years agoMerge remote-tracking branch 'github/pull/343'
Tom Hughes [Fri, 18 Sep 2020 07:21:57 +0000 (08:21 +0100)]
Merge remote-tracking branch 'github/pull/343'

4 years agoBump cookstyle from 6.17.7 to 6.18.8
dependabot[bot] [Fri, 18 Sep 2020 05:01:10 +0000 (05:01 +0000)]
Bump cookstyle from 6.17.7 to 6.18.8

Bumps [cookstyle](https://github.com/chef/cookstyle) from 6.17.7 to 6.18.8.
- [Release notes](https://github.com/chef/cookstyle/releases)
- [Changelog](https://github.com/chef/cookstyle/blob/master/CHANGELOG.md)
- [Commits](https://github.com/chef/cookstyle/compare/v6.17.7...v6.18.8)

Signed-off-by: dependabot[bot] <support@github.com>
4 years agoConfigure server status URI for apache exporter
Tom Hughes [Thu, 17 Sep 2020 19:29:16 +0000 (20:29 +0100)]
Configure server status URI for apache exporter

4 years agoEnable NTP collector for prometheus node exporter
Tom Hughes [Thu, 17 Sep 2020 18:23:17 +0000 (18:23 +0000)]
Enable NTP collector for prometheus node exporter

4 years agoInstall prometheus apache exporter on machines running apache
Tom Hughes [Thu, 17 Sep 2020 17:52:10 +0000 (17:52 +0000)]
Install prometheus apache exporter on machines running apache

4 years agoEnable wireguard on jakelong
Tom Hughes [Thu, 17 Sep 2020 06:11:43 +0000 (07:11 +0100)]
Enable wireguard on jakelong

4 years agoFix prometheus test
Tom Hughes [Wed, 16 Sep 2020 19:57:32 +0000 (19:57 +0000)]
Fix prometheus test

4 years agoEnable firewall on drogon
Tom Hughes [Wed, 16 Sep 2020 18:47:12 +0000 (19:47 +0100)]
Enable firewall on drogon

4 years agoDisable firewall on drogon
Tom Hughes [Wed, 16 Sep 2020 18:20:10 +0000 (19:20 +0100)]
Disable firewall on drogon

4 years agoAdd wireguard keepalives to a few more machines
Tom Hughes [Wed, 16 Sep 2020 18:10:06 +0000 (19:10 +0100)]
Add wireguard keepalives to a few more machines

4 years agoAdd a keepalive for wireguard on longma
Tom Hughes [Wed, 16 Sep 2020 17:42:52 +0000 (18:42 +0100)]
Add a keepalive for wireguard on longma

4 years agoAdd brackets around IPv6 addresses
Tom Hughes [Wed, 16 Sep 2020 16:54:38 +0000 (17:54 +0100)]
Add brackets around IPv6 addresses

4 years agoInstall prometheus client everywhere
Tom Hughes [Wed, 16 Sep 2020 16:43:02 +0000 (17:43 +0100)]
Install prometheus client everywhere

4 years agoAllow prometheus to use wireguard or direct external connections
Tom Hughes [Wed, 16 Sep 2020 16:19:37 +0000 (17:19 +0100)]
Allow prometheus to use wireguard or direct external connections

4 years agoEnable wireguard support on all machines that support it
Tom Hughes [Wed, 16 Sep 2020 15:54:26 +0000 (16:54 +0100)]
Enable wireguard support on all machines that support it

4 years agoDeploy prometheus client to machines in Amsterdam
Tom Hughes [Wed, 16 Sep 2020 15:33:56 +0000 (16:33 +0100)]
Deploy prometheus client to machines in Amsterdam

4 years agoLabel targets with appropriate instance names
Tom Hughes [Wed, 16 Sep 2020 08:33:09 +0000 (09:33 +0100)]
Label targets with appropriate instance names

4 years agoMerge remote-tracking branch 'github/pull/342'
Tom Hughes [Wed, 16 Sep 2020 07:22:56 +0000 (08:22 +0100)]
Merge remote-tracking branch 'github/pull/342'

4 years agoBump test-kitchen from 2.7.0 to 2.7.1
dependabot[bot] [Wed, 16 Sep 2020 05:01:17 +0000 (05:01 +0000)]
Bump test-kitchen from 2.7.0 to 2.7.1

Bumps [test-kitchen](https://github.com/test-kitchen/test-kitchen) from 2.7.0 to 2.7.1.
- [Release notes](https://github.com/test-kitchen/test-kitchen/releases)
- [Changelog](https://github.com/test-kitchen/test-kitchen/blob/master/CHANGELOG.md)
- [Commits](https://github.com/test-kitchen/test-kitchen/compare/v2.7.0...v2.7.1)

Signed-off-by: dependabot[bot] <support@github.com>
4 years agoConfigure SMTP for prometheus
Tom Hughes [Tue, 15 Sep 2020 21:16:28 +0000 (22:16 +0100)]
Configure SMTP for prometheus

4 years agoInstall grafana as an interface to prometheus
Tom Hughes [Tue, 15 Sep 2020 19:54:16 +0000 (19:54 +0000)]
Install grafana as an interface to prometheus

4 years agoGroup prometheus josb by exporter instead of client
Tom Hughes [Tue, 15 Sep 2020 18:04:32 +0000 (18:04 +0000)]
Group prometheus josb by exporter instead of client

4 years agoAllow wireguard connections from anywhere
Tom Hughes [Tue, 15 Sep 2020 16:32:22 +0000 (17:32 +0100)]
Allow wireguard connections from anywhere

4 years agoEnable wireguard access for tomh
Tom Hughes [Tue, 15 Sep 2020 16:23:50 +0000 (17:23 +0100)]
Enable wireguard access for tomh

4 years agoRemove a few legacy settings
Tom Hughes [Tue, 15 Sep 2020 16:23:21 +0000 (17:23 +0100)]
Remove a few legacy settings

4 years agoMerge remote-tracking branch 'github/pull/341'
Tom Hughes [Tue, 15 Sep 2020 07:04:17 +0000 (08:04 +0100)]
Merge remote-tracking branch 'github/pull/341'

4 years agoMerge remote-tracking branch 'github/pull/340'
Tom Hughes [Tue, 15 Sep 2020 07:04:13 +0000 (08:04 +0100)]
Merge remote-tracking branch 'github/pull/340'

4 years agoBump kitchen-dokken from 2.10.0 to 2.11.0
dependabot[bot] [Tue, 15 Sep 2020 05:01:41 +0000 (05:01 +0000)]
Bump kitchen-dokken from 2.10.0 to 2.11.0

Bumps [kitchen-dokken](https://github.com/someara/kitchen-dokken) from 2.10.0 to 2.11.0.
- [Release notes](https://github.com/someara/kitchen-dokken/releases)
- [Changelog](https://github.com/test-kitchen/kitchen-dokken/blob/master/CHANGELOG.md)
- [Commits](https://github.com/someara/kitchen-dokken/compare/v2.10.0...v2.11.0)

Signed-off-by: dependabot[bot] <support@github.com>
4 years agoBump cookstyle from 6.17.5 to 6.17.7
dependabot[bot] [Tue, 15 Sep 2020 05:01:19 +0000 (05:01 +0000)]
Bump cookstyle from 6.17.5 to 6.17.7

Bumps [cookstyle](https://github.com/chef/cookstyle) from 6.17.5 to 6.17.7.
- [Release notes](https://github.com/chef/cookstyle/releases)
- [Changelog](https://github.com/chef/cookstyle/blob/master/CHANGELOG.md)
- [Commits](https://github.com/chef/cookstyle/compare/v6.17.5...v6.17.7)

Signed-off-by: dependabot[bot] <support@github.com>
4 years agotrac: fix apache config typo
Grant Slater [Mon, 14 Sep 2020 20:50:10 +0000 (21:50 +0100)]
trac: fix apache config typo

4 years agotrac: Disable /timeline for now
Grant Slater [Mon, 14 Sep 2020 20:44:24 +0000 (21:44 +0100)]
trac: Disable /timeline for now

4 years agoRemove cleanup code
Tom Hughes [Mon, 14 Sep 2020 19:11:51 +0000 (20:11 +0100)]
Remove cleanup code

4 years agoConfigure v4 address for wireguard endpoints with an internal address
Tom Hughes [Mon, 14 Sep 2020 18:24:38 +0000 (19:24 +0100)]
Configure v4 address for wireguard endpoints with an internal address

4 years agoCleanup any old "normal" priority networking configuration
Tom Hughes [Mon, 14 Sep 2020 18:18:44 +0000 (19:18 +0100)]
Cleanup any old "normal" priority networking configuration

4 years agoFix configuration of wireguard keys on 18.04
Tom Hughes [Mon, 14 Sep 2020 18:07:24 +0000 (19:07 +0100)]
Fix configuration of wireguard keys on 18.04

4 years agoMake updating wireguard configuration work on 18.04
Tom Hughes [Mon, 14 Sep 2020 16:35:51 +0000 (17:35 +0100)]
Make updating wireguard configuration work on 18.04

4 years agoAdd routes to wireguard peers
Tom Hughes [Mon, 14 Sep 2020 16:32:15 +0000 (17:32 +0100)]
Add routes to wireguard peers

4 years agoUse correct network prefix for wireguard tunnels
Tom Hughes [Mon, 14 Sep 2020 16:25:50 +0000 (17:25 +0100)]
Use correct network prefix for wireguard tunnels

4 years agoStrip trailing newline from public key
Tom Hughes [Mon, 14 Sep 2020 16:25:21 +0000 (17:25 +0100)]
Strip trailing newline from public key

4 years agoGenerate wireguard addresses without systemd-id128
Tom Hughes [Mon, 14 Sep 2020 16:16:49 +0000 (16:16 +0000)]
Generate wireguard addresses without systemd-id128

4 years agoFix cookstyle warnings
Tom Hughes [Mon, 14 Sep 2020 15:59:55 +0000 (16:59 +0100)]
Fix cookstyle warnings

4 years agoReplace OpenVPN with wireguard for VPN tunnels
Tom Hughes [Sun, 13 Sep 2020 23:36:11 +0000 (23:36 +0000)]
Replace OpenVPN with wireguard for VPN tunnels

4 years agoAdd basic infrastructure for wireguard tunnels
Tom Hughes [Sat, 12 Sep 2020 14:29:52 +0000 (14:29 +0000)]
Add basic infrastructure for wireguard tunnels

4 years agotrace: Disallow all robots. Is no more. It has ceased to be.
Grant Slater [Sun, 13 Sep 2020 22:22:58 +0000 (23:22 +0100)]
trace: Disallow all robots. Is no more. It has ceased to be.

4 years agoOnly update the main openstreetmap.org domain during regular checks
Tom Hughes [Sun, 13 Sep 2020 16:48:03 +0000 (17:48 +0100)]
Only update the main openstreetmap.org domain during regular checks

4 years agodns: update dnscontrol to v3.3.0
Grant Slater [Sun, 13 Sep 2020 15:31:26 +0000 (16:31 +0100)]
dns: update dnscontrol to v3.3.0

4 years agoUpdate piwik to 3.14.1
Tom Hughes [Sat, 12 Sep 2020 11:12:49 +0000 (12:12 +0100)]
Update piwik to 3.14.1

4 years agoUpdate bundle
Tom Hughes [Fri, 11 Sep 2020 21:35:53 +0000 (22:35 +0100)]
Update bundle

4 years agoDon't try and dump tablespaces in mysql backups
Tom Hughes [Fri, 11 Sep 2020 17:34:29 +0000 (18:34 +0100)]
Don't try and dump tablespaces in mysql backups

4 years agoPrevent installation of prometheus-node-exporter-collectors
Tom Hughes [Fri, 11 Sep 2020 14:14:59 +0000 (15:14 +0100)]
Prevent installation of prometheus-node-exporter-collectors

4 years agoInstall basic prometheus node exporter on UCL machines
Tom Hughes [Fri, 11 Sep 2020 14:02:38 +0000 (15:02 +0100)]
Install basic prometheus node exporter on UCL machines

4 years agoConfigure tiamat-11 as a prometheus server
Tom Hughes [Fri, 11 Sep 2020 13:59:26 +0000 (14:59 +0100)]
Configure tiamat-11 as a prometheus server

4 years agoAdd initial version of prometheus cookbook
Tom Hughes [Fri, 11 Sep 2020 13:45:10 +0000 (13:45 +0000)]
Add initial version of prometheus cookbook

4 years agoRemove web-backend role from thorns
Tom Hughes [Thu, 10 Sep 2020 17:13:07 +0000 (18:13 +0100)]
Remove web-backend role from thorns

4 years agoTake memcached stats from the frontends
Tom Hughes [Thu, 10 Sep 2020 09:14:48 +0000 (10:14 +0100)]
Take memcached stats from the frontends

4 years agoHandle all requests on frontends and stop proxying to backends
Tom Hughes [Thu, 10 Sep 2020 08:37:58 +0000 (09:37 +0100)]
Handle all requests on frontends and stop proxying to backends

4 years agoUse frontends for memcache storage
Tom Hughes [Thu, 10 Sep 2020 08:09:26 +0000 (09:09 +0100)]
Use frontends for memcache storage

4 years agoMerge remote-tracking branch 'github/pull/339'
Tom Hughes [Thu, 10 Sep 2020 07:15:11 +0000 (08:15 +0100)]
Merge remote-tracking branch 'github/pull/339'

4 years agoiRun memcached on locahost if there is no internal address
Tom Hughes [Thu, 10 Sep 2020 07:14:19 +0000 (08:14 +0100)]
iRun memcached on locahost if there is no internal address

4 years agoBump test-kitchen from 2.6.0 to 2.7.0
dependabot[bot] [Thu, 10 Sep 2020 05:00:49 +0000 (05:00 +0000)]
Bump test-kitchen from 2.6.0 to 2.7.0

Bumps [test-kitchen](https://github.com/test-kitchen/test-kitchen) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/test-kitchen/test-kitchen/releases)
- [Changelog](https://github.com/test-kitchen/test-kitchen/blob/master/CHANGELOG.md)
- [Commits](https://github.com/test-kitchen/test-kitchen/compare/v2.6.0...v2.7.0)

Signed-off-by: dependabot[bot] <support@github.com>
4 years agoridley: tweak apache config to hopefully improve health
Grant Slater [Thu, 10 Sep 2020 00:23:36 +0000 (01:23 +0100)]
ridley: tweak apache config to hopefully improve health

4 years agoCheck that memcached is running on the frontends
Tom Hughes [Wed, 9 Sep 2020 19:38:40 +0000 (20:38 +0100)]
Check that memcached is running on the frontends

4 years agoUpdate kitchen tests for changes to frontend and backend services
Tom Hughes [Wed, 9 Sep 2020 19:35:56 +0000 (20:35 +0100)]
Update kitchen tests for changes to frontend and backend services

4 years agoSpin up memcached on the web frontends
Tom Hughes [Wed, 9 Sep 2020 18:20:38 +0000 (19:20 +0100)]
Spin up memcached on the web frontends

4 years agoMove all rails job queue runners to the frontends
Tom Hughes [Wed, 9 Sep 2020 18:17:42 +0000 (19:17 +0100)]
Move all rails job queue runners to the frontends

4 years agoSpin up cgimap on the frontends
Tom Hughes [Wed, 9 Sep 2020 18:14:02 +0000 (19:14 +0100)]
Spin up cgimap on the frontends

4 years agoAdd remote hands for lambton
Tom Hughes [Mon, 7 Sep 2020 15:46:59 +0000 (16:46 +0100)]
Add remote hands for lambton

4 years agoRe-enable firewall on lambton
Tom Hughes [Mon, 7 Sep 2020 13:54:23 +0000 (14:54 +0100)]
Re-enable firewall on lambton

4 years agoUpdate name of smartd service
Tom Hughes [Mon, 7 Sep 2020 13:49:39 +0000 (14:49 +0100)]
Update name of smartd service

4 years agoDisable firewall on lambton
Tom Hughes [Sun, 6 Sep 2020 16:55:46 +0000 (17:55 +0100)]
Disable firewall on lambton

4 years agoAdd role for lambton
Tom Hughes [Sun, 6 Sep 2020 14:24:57 +0000 (15:24 +0100)]
Add role for lambton

4 years agoDrop role for necrosan
Tom Hughes [Sat, 5 Sep 2020 14:54:02 +0000 (15:54 +0100)]
Drop role for necrosan

4 years agoWSGIDaemonProcess use multiple processes and restart-interval
Grant Slater [Thu, 3 Sep 2020 14:27:31 +0000 (15:27 +0100)]
WSGIDaemonProcess use multiple processes and restart-interval

4 years agoMerge remote-tracking branch 'github/pull/338'
Tom Hughes [Thu, 3 Sep 2020 08:13:28 +0000 (09:13 +0100)]
Merge remote-tracking branch 'github/pull/338'

4 years agoBump cookstyle from 6.16.9 to 6.16.10
dependabot[bot] [Thu, 3 Sep 2020 05:02:19 +0000 (05:02 +0000)]
Bump cookstyle from 6.16.9 to 6.16.10

Bumps [cookstyle](https://github.com/chef/cookstyle) from 6.16.9 to 6.16.10.
- [Release notes](https://github.com/chef/cookstyle/releases)
- [Changelog](https://github.com/chef/cookstyle/blob/master/CHANGELOG.md)
- [Commits](https://github.com/chef/cookstyle/compare/v6.16.9...v6.16.10)

Signed-off-by: dependabot[bot] <support@github.com>
4 years agoUpdate bundle
Tom Hughes [Wed, 2 Sep 2020 06:07:26 +0000 (07:07 +0100)]
Update bundle

4 years agoUpdate bundle
Tom Hughes [Tue, 1 Sep 2020 21:28:26 +0000 (22:28 +0100)]
Update bundle

4 years agorsync: Add missing systemd dependency
Grant Slater [Mon, 31 Aug 2020 19:30:38 +0000 (20:30 +0100)]
rsync: Add missing systemd dependency

4 years agoplanet: increase download speed
Grant Slater [Mon, 31 Aug 2020 17:07:22 +0000 (18:07 +0100)]
planet: increase download speed

4 years agorsync: increase rsyncd transfer speed
Grant Slater [Mon, 31 Aug 2020 17:01:52 +0000 (18:01 +0100)]
rsync: increase rsyncd transfer speed