summary |
shortlog | log |
commit |
commitdiff |
review |
tree
first ⋅ prev ⋅ next
lhinds [Thu, 6 Jul 2017 08:53:04 +0000 (09:53 +0100)]
Password regex generating too much false flags
Removed 'pass' from array
Change-Id: Icd4f27f7d8c3e464fae159b5e220781d8597dbec
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Wed, 5 Jul 2017 14:19:29 +0000 (15:19 +0100)]
Readme window dressing
This is mainly to provide some information to users landing
on the github mirror of releng-anteater
Change-Id: I7ef27dd2b313e9ff0e7e103d547d07252235f128
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Wed, 5 Jul 2017 12:20:55 +0000 (13:20 +0100)]
Exception entry for wget
Resolves false flag in:
https://gerrit.opnfv.org/gerrit/#/c/36963/
docker/smoke/Dockerfile
Change-Id: I6bfc0a47ef662253c54fd51010c39817a23ee26c
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Wed, 5 Jul 2017 08:15:40 +0000 (09:15 +0100)]
Fixed regex to streamline wildcards
Change-Id: I5ac55820cf53eb61d6c67c22a33d05041d9fa8b3
Signed-off-by: lhinds <lhinds@redhat.com>
Luke Hinds [Wed, 5 Jul 2017 08:17:25 +0000 (08:17 +0000)]
Merge "Exception for publicURL"
lhinds [Wed, 5 Jul 2017 06:35:09 +0000 (07:35 +0100)]
Exception for publicURL
Change-Id: I273c05048bc3a5464e2016abe2a3cc6ca45446ae
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Wed, 5 Jul 2017 06:32:06 +0000 (07:32 +0100)]
Added *_settings.py
False match
Change-Id: I55303d9b2bd39a6c7e7326b08b36409bba860f5b
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Tue, 4 Jul 2017 13:08:49 +0000 (14:08 +0100)]
Add new master list strings
More strings added and improvements made to optimise some
existing strings
JIRA: RELENG-270
Change-Id: I7e8ba204297575b1e8d0d851e1ee957374f8c955
Signed-off-by: lhinds <lhinds@redhat.com>
Luke Hinds [Tue, 4 Jul 2017 11:49:01 +0000 (11:49 +0000)]
Merge "Remove eval as far too many false postivies"
lhinds [Tue, 4 Jul 2017 08:25:56 +0000 (09:25 +0100)]
Remove eval as far too many false postivies
Change-Id: I255c0e1048823bd628071a889c65d82746356e4b
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Mon, 3 Jul 2017 13:42:25 +0000 (14:42 +0100)]
Add weekly anteater projects
July 2nd additions
https://wiki.opnfv.org/display/INF/Project+Roll+Out+for+Anteater
Change-Id: I3610868930f0d6033e528548dceb09b3279b6b8d
Signed-off-by: lhinds <lhinds@redhat.com>
Luke Hinds [Mon, 3 Jul 2017 13:12:07 +0000 (13:12 +0000)]
Merge "move logging to runtime init"
Ross Brattain [Thu, 22 Jun 2017 01:49:08 +0000 (18:49 -0700)]
move logging to runtime init
There are many ways to init logging, but
doing import-time logic can cause problems.
For yardstick we are doing this type of run-time
init in the main program startup.
This allows for some flexibiliy since we just
set the root loggers. Every other logger is
standard, not subclassed
Change-Id: I7004a147f03a7104f373141caf9206d8e49a5d4c
Signed-off-by: Ross Brattain <ross.b.brattain@intel.com>
Ross Brattain [Thu, 22 Jun 2017 04:51:49 +0000 (21:51 -0700)]
switch logging to proper usage
The logging methods do string interpolation themselves
The first arg to logging.debug() is formally defined to be a message
format string.
From the reference:
https://docs.python.org/2/library/logging.html#logging.Logger.debug
Logger.debug(msg, *args, **kwargs)
Logs a message with level DEBUG on this logger. The msg is the message
format string, and the args are the arguments which are merged into msg
using the string formatting operator. (Note that this means that you can
use keywords in the format string, together with a single dictionary
argument.)
There are two keyword arguments in kwargs which are inspected: exc_info
which, if it does not evaluate as false, causes exception information to
be added to the logging message. If an exception tuple (in the format
returned by sys.exc_info()) is provided, it is used; otherwise,
sys.exc_info() is called to get the exception information
The reason logging does string interpolation it self is to implement
deferred interpolation.
String interpolation involves evaluating arguments, so it can introduce
significant computation. The logging module tries to be smart about
deferring interpolation until the last possible moment.
The logging methods check isEnabledFor for the log level and won't
interpolate if the level is not enabled.
https://github.com/python/cpython/blob/2.7/Lib/logging/__init__.py#L1178
def warning(self, msg, *args, **kwargs):
if self.isEnabledFor(WARNING):
self._log(WARNING, msg, args, **kwargs)
logging actually waits to interpolate the string in LogRecord.getMessage()
https://github.com/python/cpython/blob/2.7/Lib/logging/__init__.py#L328
if self.args:
msg = msg % self.args
Change-Id: I0090dcbc408200b6f2471748eae0c5a763da2e37
Signed-off-by: Ross Brattain <ross.b.brattain@intel.com>
Ross Brattain [Wed, 21 Jun 2017 21:57:13 +0000 (14:57 -0700)]
add Python3 support with six
switch to relative imports for package file
use absolute imports in main
this requires renaming anteater.py to main.py
to avoid absolute import name conflict
update setup.py to indicate python 3.4 support
Change-Id: I0fcaf8a9825557962dc98a6a4eef490051fbbfb0
Signed-off-by: Ross Brattain <ross.b.brattain@intel.com>
Cédric Ollivier [Wed, 28 Jun 2017 20:54:25 +0000 (22:54 +0200)]
Allow downloading files hosted by git.openstack.org
It replaces the previous exception for the cloned repositories
(github.com/openstack).
Change-Id: I920ab7ae70c4490b53a7e988e5b0b258a12ec67f
Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com>
lhinds [Wed, 28 Jun 2017 14:33:18 +0000 (15:33 +0100)]
Add exceptions for trusted domains
gerrit.opnfv.org
openstack.org
artifacts.opnfv.org
build.opnfv.org
githubusercontent.com/openstack
Change-Id: I6904c5de847b13279f0aa3feee583ff8bd987920
Signed-off-by: lhinds <lhinds@redhat.com>
Luke Hinds [Wed, 28 Jun 2017 12:31:34 +0000 (12:31 +0000)]
Merge "Add wget from artifacts.opnfv.org to exceptions"
lhinds [Tue, 27 Jun 2017 20:12:06 +0000 (21:12 +0100)]
Fixes UnboundLocalError issue.
If no hash exists in the project exception file, then `return
binary_hash` is Nonetype which throws an Unbound variable error.
This change adds some dummy text to allow try / except statements
to deal with missing entries in project exception files.
JIRA: RELENG-264
Change-Id: I98fb4b01a2930b350794326d4cf735c8e014e00a
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Tue, 27 Jun 2017 11:38:19 +0000 (12:38 +0100)]
Add virtualenv to stop permission errors
JIRA: RELENG-260
Change-Id: I55ba731441a2167063c0f7e758cc66a973da4ec9
Signed-off-by: lhinds <lhinds@redhat.com>
Luke Hinds [Tue, 27 Jun 2017 06:48:22 +0000 (06:48 +0000)]
Merge "Implements sha256 exception functionality"
xudan [Mon, 26 Jun 2017 08:41:44 +0000 (04:41 -0400)]
Add wget from artifacts.opnfv.org to exceptions
JIRA: DOVETAIL-455
1. change build.opnfv.org to build\.opnfv\.org
2. add wget(.*)artifacts\.opnfv\.org
Change-Id: I62f0f0f3a145fa38ebab94b3852f196b530f945a
Signed-off-by: xudan <xudan16@huawei.com>
lhinds [Sun, 25 Jun 2017 17:43:51 +0000 (18:43 +0100)]
Implements sha256 exception functionality
This patch adds functionality for file checksum verfications for
binary files.
The master_list.yaml binaries yaml directive now only contains
simple exceptions (for common artefacts that are gitignored)
Each project_exception file now has a filename and a sha256 hash.
If a binary file is not found, or the hash is mismatched,
it will output the hash for the user to include in an exception
patch.
This functionality has been added to complete project scans
and patchset scans
JIRA: RELENG-240
Change-Id: Iafa5710f4a0da192fc74335b1200b504413f8a8b
Signed-off-by: lhinds <lhinds@redhat.com>
Trevor Bramwell [Fri, 23 Jun 2017 22:30:53 +0000 (15:30 -0700)]
Fix Yamllint Violations
JIRA: RELENG-258
Change-Id: I56a45340196c06a58f7103c57120a38c9ab7d28a
Signed-off-by: Trevor Bramwell <tbramwell@linuxfoundation.org>
Luke Hinds [Fri, 23 Jun 2017 07:07:05 +0000 (07:07 +0000)]
Merge "Run Anteater under Docker as Non-Root User"
Trevor Bramwell [Wed, 21 Jun 2017 18:26:43 +0000 (11:26 -0700)]
Run Anteater under Docker as Non-Root User
Instead of violating the priciple of least privilage, anteater should
be ran by a non-root user.
Anteater doesn't need access to anything owned by root to perform
security scanning, and running as a non-root user should prevent it from
creating file owned by root in the future.
JIRA: RELENG-238
Change-Id: I7b75255ff460444763acbcc5d7752e1223860a2b
Signed-off-by: Trevor Bramwell <tbramwell@linuxfoundation.org>
lhinds [Wed, 21 Jun 2017 22:52:30 +0000 (23:52 +0100)]
Adds Pharos, Functest, Octopus to Anteater
This change adds exception files to anteater, to enable projects
Functest, Pharos, Octopus.
JIRA: RELENG-252
Change-Id: I1ac120ae2bdf868f9db34fe4dd30357efe61ce17
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Wed, 21 Jun 2017 12:32:29 +0000 (13:32 +0100)]
rename gatechecks and project_config
gatechecks is renamed to master_list and project_config is
renamed to project_exceptions
JIRA:RELENG-251
Change-Id: Icbcc2c114d687783e0720017025cb4bb8e53e8a3
Signed-off-by: lhinds <lhinds@redhat.com>
Luke Hinds [Wed, 21 Jun 2017 12:10:06 +0000 (12:10 +0000)]
Merge "Move project's exception file to subdir"
Luke Hinds [Wed, 21 Jun 2017 12:04:06 +0000 (12:04 +0000)]
Merge "Merge some regexes into oneline"
Luke Hinds [Wed, 21 Jun 2017 12:03:57 +0000 (12:03 +0000)]
Merge "Use yaml hyphen for list declaration"
Julien [Mon, 19 Jun 2017 16:09:04 +0000 (00:09 +0800)]
Merge some regexes into oneline
Change-Id: I2f9a2c5306d8a7e8842ea442f2b0ad09f7cd71ae
Signed-off-by: Julien <zhang.jun3g@zte.com.cn>
Julien [Mon, 19 Jun 2017 15:56:56 +0000 (23:56 +0800)]
Move project's exception file to subdir
add subdir **exceptions** for project's specific exception config files
Change-Id: I57b7972706dd2e2168099e9815a0cfc3e8a33b67
Signed-off-by: Julien <zhang.jun3g@zte.com.cn>
lhinds [Mon, 19 Jun 2017 15:41:40 +0000 (16:41 +0100)]
Provides clarification that LICENSE is in repo
This change peforms a clarification that a LICENSE file exists
within the root folder of the set project repo.
This feature is only for complete project scans and not a patch
scan.
JIRA:RELENG-235
Change-Id: I6d238158f7501aaff6c21ecc59b505b5c79565f2
Signed-off-by: lhinds <lhinds@redhat.com>
Julien [Wed, 14 Jun 2017 08:56:45 +0000 (16:56 +0800)]
Use yaml hyphen for list declaration
JIRA:RELENG-236
Change-Id: I1ab32cccbf16ac62099a9b39e69238c574766980
Signed-off-by: Julien <zhang.jun3g@zte.com.cn>
lhinds [Mon, 19 Jun 2017 10:30:47 +0000 (11:30 +0100)]
Ignore all lines that start with a comment
Adds regexp to existing exception files, so that all files
that have commented lines are ignored.
Also added a template_exception file with comments added as
default
JIRA:RELENG-239
Change-Id: I0de9bf91170e6614f3e1ee9bd1d486ca1eaf830b
Signed-off-by: lhinds <lhinds@redhat.com>
Julien [Thu, 15 Jun 2017 03:24:57 +0000 (11:24 +0800)]
seperate exception rules for releng project
add optional project exception configuration file.
for one project:
configuration in project exception file and in gatechecks.yaml will be
merged together for one project
JIRA:RELENG-234
Change-Id: I7fff3082e837a478f155769fadd75533583543cd
Signed-off-by: Julien <zhang.jun3g@zte.com.cn>
Julien [Wed, 14 Jun 2017 07:33:39 +0000 (15:33 +0800)]
Fix log directory issues
1. /home/opnfv can not be created in osx
2. when the log directory is not existed, anteater_logger.py will fail
3. add new added directory .reports into .gitignore
Change-Id: If3833bfbaf160d35afab1c71d3fab060a1164da6
Signed-off-by: Julien <zhang.jun3g@zte.com.cn>
lhinds [Wed, 14 Jun 2017 07:24:13 +0000 (08:24 +0100)]
Adding all projects for weekly run.
A 'testproj' capture all variable is used for weekly runs
Change-Id: I7b55e21b885fb1b44b5309b2715c58944c10723e
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Wed, 14 Jun 2017 06:20:57 +0000 (07:20 +0100)]
Adds Wiki URL to gerrit output
A link to a wiki page is supplied, that instructs the user on how
to make an exception patch.
Also quick fix to log format
Change-Id: Icfc8072d9764fe321e14b97080fca47d26ea8dc6
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Tue, 13 Jun 2017 08:23:51 +0000 (09:23 +0100)]
Add sandbox project
Change-Id: I2f2ecfb38e093b0c1a77eb7a2447b98094d5be6b
Signed-off-by: lhinds <lhinds@redhat.com>
Fatih Degirmenci [Mon, 12 Jun 2017 05:56:41 +0000 (13:56 +0800)]
Fix docker build by using the build-arg BRANCH
Change-Id: If4f33edf764ba965cbefd9ce94528e78e69e345b
Signed-off-by: Fatih Degirmenci <fatih.degirmenci@ericsson.com>
lhinds [Wed, 17 May 2017 12:31:18 +0000 (13:31 +0100)]
Initial code push of Anteater
Likely far to much to cover in a commit msg.
Main bulk is the Anteater code itself, alongside
packaging requirements and build tools and Dockerfile.
Unit tests are planned as a follow up, so pushing this for now
so that efforts can get underway to integrate the tool with
jjb.
Questions on how it works, please reach me in IRC.
Change-Id: I2cd3cae391f8bf2cdc91b39c56dfc4833a1c4913
Signed-off-by: lhinds <lhinds@redhat.com>
lhinds [Fri, 12 May 2017 08:32:35 +0000 (09:32 +0100)]
Initiates new repo.
This change initiates new files required to implement the
releng-anteater project.
Change-Id: Icd195558f3f2b617a3327c8fe3734ac69bcab2f3
Signed-off-by: lhinds <lhinds@redhat.com>
Aric Gardner [Thu, 11 May 2017 18:31:42 +0000 (18:31 +0000)]
Initial empty repository