Commit Graph

15781 Commits (1eee5ec6ff80278d95af9f9e9218fae033d8b034)
 

Author SHA1 Message Date
Toshio Kuratomi 088682f518 Synchronize in wasn't running on localhost in the default case which meant that rsync was run on the wrong host.
Fixes #11649
9 years ago
Mahmoud Saada ddd46f6599 Update rekey() in vault.py to validate files passed exist before prompting for password 9 years ago
Brian Coca 8798ce1973 Merge pull request #9365 from t0mk/ssh_config_fix
fix ssh_config inventory plugin to work with paramiko 1.7.2 till 1.15.2
9 years ago
Brian Coca 29347ac457 switched from png to svg
fixes #9885
9 years ago
Brian Coca 0784fa1765 removed import q 9 years ago
Brian Coca 96bcf50a94 implemented requirements file in v2
fixes #11179
9 years ago
Tomas Karasek bb6a327c1b fix ssh_config inventory plugin to work with paramiko 1.7.2 till 1.15.2 9 years ago
James Cammarata 71867f9480 Remove vars attribute from base
Fixes #11779
9 years ago
Scott Cunningham 695e456cb0 add credstash lookup plugin 9 years ago
Vilmos Nebehaj 956fa80115 Add note about installing cryptography. 9 years ago
Brian Coca 132c14eb57 indented hosts 9 years ago
Brian Coca c0c094c413 now all --list options are working! 9 years ago
Brian Coca 884435a1aa minor cosmetic changes to list options 9 years ago
Brian Coca 056602c424 rearranged --list- options, now they are consolidated when used toghether, less loops, more concise output
list-hosts works
list-tasks works, but needs better task naming (missing role info)
list-tags only shows play tags
9 years ago
Brian Coca b8336f222d Merge pull request #11560 from oscarhealth/devel
ability to specify any combination of EC2 instance states to return
9 years ago
Brian Coca d75b4cd190 Merge pull request #11006 from alexlo03/ec2_inventory_clear_errors
explain source of EC2 inventory error
9 years ago
Brian Coca 7a019d930e Merge pull request #8469 from srvg/packageversion_more_gitinfo
packaging: add short hash and branch name in package version for unoffici...
9 years ago
Brian Coca cc85473c1e show role search path when not finding a role
fixes #9770
9 years ago
Brian Coca adc8a32c65 added vca_nat and vca_fw to changelog 9 years ago
Brian Coca d276b69b2a put proxmox inventory in correct dir and added to changelog 9 years ago
Brian Coca 018ca6ddef Merge pull request #9273 from gauthierl/proxmox_inventory
add a proxmox inventory plugin
9 years ago
James Cammarata 42cfacf83b Switch up the task/host overrides for PlayContext to use the compiled vars dict
Fixes #11436
9 years ago
Brian Coca 2d2ec058c8 added xenserver_Facts to changelog 9 years ago
Brian Coca a8b2b5b0c9 avoids printing blank diffs
fixes #10147 fixes #9471
9 years ago
James Cammarata 5cf2781528 A little more cleanup regarding _compute_environment_string 9 years ago
James Cammarata 467432bef5 Fix incorrect module path for AnsibleError in action plugin base 9 years ago
Brian Coca f5c8055879 removed debug stuff 9 years ago
Brian Coca 67ce15cd99 added ec2_vpc_route_table_facts to new module list 9 years ago
Brian Coca b91a211663 added note on module urllib2 consolidation 9 years ago
Brian Coca f4a997db49 added back but stderr, which was the original itnention 9 years ago
Brian Coca 3b9282fb90 fixed dupe output in raw/command cases 9 years ago
Brian Coca a78fdde32c better handling for weird doc corner cases (abscense of options, bad text objects, etc)
also updated extras to get some docfixes on the module side
9 years ago
Toshio Kuratomi 0d7d22d530 Add json and fetch_url notes to checklist 9 years ago
Brian Coca 17103dd4cc update submodule refs 9 years ago
Brian Coca 6cdee94c33 added missing skipped item function to base 9 years ago
Brian Coca 6f93d228f6 made item output closer to v1 9 years ago
Brian Coca 4f9d719b14 removed debug 9 years ago
Brian Coca d78c2fc212 now reports per task item 9 years ago
James Cammarata 2d90cbf78b Properly fail results with rc != 0
Fixes #11769
9 years ago
Brian Coca 787a0c4e04 fixed indent issues 9 years ago
Vilmos Nebehaj 58cccce384 Use PBKDF2HMAC() from cryptography for vault keys.
When stretching the key for vault files, use PBKDF2HMAC() from the
cryptography package instead of pycrypto. This will speed up the opening
of vault files by ~10x.

The problem is here in lib/ansible/utils/vault.py:

    hash_function = SHA256

    # make two keys and one iv
    pbkdf2_prf = lambda p, s: HMAC.new(p, s, hash_function).digest()

    derivedkey = PBKDF2(password, salt, dkLen=(2 * keylength) + ivlength,
                        count=10000, prf=pbkdf2_prf)

`PBKDF2()` calls a Python callback function (`pbkdf2_pr()`) 10000 times.
If one has several vault files, this will cause excessive start times
with `ansible` or `ansible-playbook` (we experience ~15 second startup
times).

Testing the original implementation in 1.9.2 with a vault file:

In [2]: %timeit v.decrypt(encrypted_data)
1 loops, best of 3: 265 ms per loop

Having a recent OpenSSL version and using the vault.py changes in this commit:

In [2]: %timeit v.decrypt(encrypted_data)
10 loops, best of 3: 23.2 ms per loop
9 years ago
Brian Coca 77fc3ce759 removed unused import 9 years ago
Brian Coca aa5bd8c2b5 added pam_limits to changelog 9 years ago
Lukas Pirl d9aa14feea fixes remote code execution for su/sudo and strict remote umasks
* temporarily changes umask for creating temporary directories
    * otherwise parent directories may not get chmod'ed and end up
      unreadable
refs #9902
9 years ago
James Cammarata e505a1b7c4 Fix variable precedence integrationt test 9 years ago
Brian Coca c76a66694f fixed typo 9 years ago
Brian Coca d9c63fb273 added openvz to inventory 9 years ago
Brian Coca 80ecab5317 Merge pull request #11761 from amenonsen/9843-rebase
Add pciid to LinuxNetwork interface fact
9 years ago
Hugh Saunders f344ec463f Add LVM facts to setup module
This commit adds LinuxHardware.get_device_facts() and calls that from
.populate().

LVM facts are only gathered if the setup module is running as root and
the lvm utilities are available (tested by searching for 'vgs').

If the conditions are met, facts are set for each volume group and
logical volume.

Example:

Test LVM Data:
$ sudo vgs
  VG   #PV #LV #SN Attr   VSize VFree
  test   1   2   0 wz--n- 5.00g 2.00g
$ sudo lvs
  LV      VG   Attr      LSize Pool Origin Data%  Move Log Copy%  Convert
  testlv  test -wi-a---- 1.00g
  testlv2 test -wi-a---- 2.00g

Facts Returned:
$ ansible localhost -i /tmp/inv -m setup -a 'filter=ansible_lvm'
localhost | success >> {
    "ansible_facts": {
        "ansible_lvm": {
            "lvs": {
                "testlv": {
                    "size_g": "1.00",
                    "vg": "test"
                },
                "testlv2": {
                    "size_g": "2.00",
                    "vg": "test"
                }
            },
            "vgs": {
                "test": {
                    "free_g": "2.00",
                    "num_lvs": "2",
                    "num_pvs": "1",
                    "size_g": "5.00"
                }
            }
        }
    },
    "changed": false
}

Test as non-root:
$ ansible localhost -i /tmp/inv-user -m setup -a 'filter=ansible_lvm'
localhost | success >> {
    "ansible_facts": {},
    "changed": false
}

Test without lvm utilities available
$ sudo mv /sbin/vgs{,.bk}
$ ansible localhost -i /tmp/inv -m setup -a 'filter=ansible_lvm'
localhost | success >> {
    "ansible_facts": {},
    "changed": false
}
9 years ago
Brian Coca 5f8db9cd4b changed verbose_override to the new _ansible_verbose_override to keep in line with previous changes
output now defaults back to having indent=4
9 years ago