root
/
rabbitmq-server
mirror of https://github.com/rabbitmq/rabbitmq-server.git
1
0
Fork 0
Code Issues Actions 6 Packages Projects Releases Wiki Activity
60,099 Commits 177 Branches 545 Tags 271 MiB
Commit Graph

70 Commits

Author SHA1 Message Date
Marcial Rosales e7cb2420a7 Verify non-zero DNS and email SAN 2024-10-29 16:41:20 +01:00
Simon Unge b2904404da Use openssl.cnf config when generating new CSR 2024-09-10 17:20:41 +00:00
Marcial Rosales 1abc4ed02f Extract client_id from client cert 2024-08-30 11:39:48 +01:00
Rin Kuryloski 0881fe2ddb Adjust test cert generation in rabbitmq_ct_helpers 
In some cases with OTP 26 `{bad_cert,invalid_ext_key_usage}` handshake
failures would occur. This change seems to fix that.
 2023-05-23 13:15:28 +02:00
Michael Klishin d0276eb32e
Terraform: add AMIs for Fedora 34 and 35 
Pair: @the-mikedavis
 2022-08-05 17:25:29 +04:00
Michael Klishin 681db60cec
Terraform: Erlang packages for 24 and 25 have long been available 2022-08-05 16:16:29 +04:00
Michael Klishin 7c47d0925a
Revert "Correct a double quote introduced in #4603" 
This reverts commit 6a44e0e2ef.

That wiped a lot of files unintentionally
 2022-04-20 16:05:56 +04:00
Michael Klishin 6a44e0e2ef
Correct a double quote introduced in #4603 2022-04-20 16:01:29 +04:00
Philip Kuryloski 8c0eece3cd Adjustments for the latest bazel-erlang 2021-11-02 16:24:26 +01:00
Michael Klishin 488d0d90bb Use Buster for all Erlang versions we support 
(cherry picked from commit 61600caf32e8c5c64ea44da4dd1bcdf16b117893)
 2021-04-19 17:50:11 +03:00
Michael Klishin ca3f5eaa10 Use -auto-approve instead of -force for forward Terraform compat 2021-04-19 17:03:11 +03:00
Michael Klishin 8ebb059d54 Revert "Upgrade VM helpers to Terraform 0.15.0" 
This reverts commit bade323f67.
 2021-04-19 17:00:21 +03:00
Michael Klishin 844a63b324 Revert "Adapt more flags to Terraform 0.15" 
This reverts commit dbb52257f8.
 2021-04-19 17:00:08 +03:00
Michael Klishin 3d9a8aebc4 Run apt-get update before installing any packages 2021-04-19 16:34:15 +03:00
Michael Klishin 34a2e995c7 Install GnuPG as it isn't available on Buster by default 2021-04-19 16:28:45 +03:00
Michael Klishin ad54825b77 Erlang setup: modernize, switch away from Bintray 2021-04-19 16:19:26 +03:00
Michael Klishin dbb52257f8 Adapt more flags to Terraform 0.15 2021-04-17 00:21:39 +03:00
Michael Klishin bade323f67 Upgrade VM helpers to Terraform 0.15.0 
See [1]. Docker images are already upgraded
in the CI/CD repo.

1. https://www.terraform.io/upgrade-guides/0-15.html
 2021-04-17 00:16:49 +03:00
Michael Klishin 57eb064824 openssl.cnf: use sha256 for default_md 
Modern Python and OpenSSL versions
can reject certificates that use SHA-1
as insufficiently secure.

This is the case with Python 3 on Debian
Buster, for example

Per discussion with @pjk25 @dumbbell
 2021-04-14 19:00:39 +03:00
Philip Kuryloski d273660c92 Add Bazel build (#47) 
Add Bazel build files corresponding to rabbitmq/rabbitmq-server#2938

The gnu make build should remain unchanged by theses additions
 2021-03-29 11:27:33 +02:00
Jean-Sébastien Pédron 4b190d27b7 tools/terraform: Fix warning reported by Terraform 
We shouldn't interpolate a variable alone in a string: we should use the
variable directly.
 2021-01-04 15:47:22 +01:00
Jean-Sébastien Pédron 8555cfe67b tools/terraform: Fix warnings reported by recent versions of Terraform 2020-10-22 15:25:24 +02:00
Jean-Sébastien Pédron e97357c8f4 tools/terraform: Use Debian package for Erlang 23 
We don't need to compile it from sources anymore.
 2020-07-24 19:42:36 +02:00
Jean-Sébastien Pédron e73523d456 tools/terraform: Switch to m5.large instance type by default 
The m4.large could build Erlang and the testsuite could run in 28
minutes. That's an improvment, but we are still close to the limit.

Rather than bump the limit, try with an m5.large. It's also a bit
cheaper to my surprise.
 2020-07-23 11:26:13 +02:00
Jean-Sébastien Pédron aae024f958 tools/terraform: Switch to m4.large instance type by default 
The previous default of t2.micro was insufficient to compile Erlang from
sources in under 30 minutes. This caused the integration testsuite to
timeout.

Hopefully an m4.large instance type will be enough.
 2020-07-23 10:34:03 +02:00
Jean-Sébastien Pédron d6fd834e91 tools/terraform: Add support for Erlang 24 (Git master) 2020-05-15 14:37:30 +02:00
Jean-Sébastien Pédron 5c0003e5a4 tools/terraform: Fix warnings reported by Terraform 0.12.x 2020-04-14 12:47:03 +02:00
Michael Klishin 5b7c20fa7d Add more minors to erlang_version_to_system 
we list all 23.x minors for forward compatibility.
When a release is missing from this map,
test suites that start VMs for their test begin
failing.
 2020-04-13 10:25:07 +03:00
Jean-Sébastien Pédron ee153868df tools/terraform: Erlang 22 is available on Debian Stretch 2019-09-19 14:41:12 +02:00
Jean-Sébastien Pédron dbcd95aed7 tools/terraform: Use Debian Stretch to test against Erlang 23 2019-06-11 13:36:18 +02:00
Jean-Sébastien Pédron f1115f8d37 tools/terraform: Adapt lists to Terraform 0.12.x, take #2 
The definition of the `security_groups` variable in the `direct-vms`
module was incorrect. This may explain the error seen in CI. No idea why
the same error didn't appear locally though.
 2019-06-11 10:12:00 +02:00
Jean-Sébastien Pédron fc081f7ca9 tools/terraform: Use our own Erlang packages 
Erlang Solutions repository appears to be broken again at the time of
this commit.
 2019-06-06 16:54:57 +02:00
Jean-Sébastien Pédron 1ffd59f877 tools/terraform: Fix missing `erlang_git_ref` variable definition 2019-06-06 16:54:22 +02:00
Jean-Sébastien Pédron bbd058f12a tools/terraform: Adapt to Terraform 0.12.x 2019-06-06 15:09:07 +02:00
Michael Klishin 135c73e8be tools/terraform: provision Erlang 22 via Debian packages (now that it is GA) 2019-05-16 20:01:41 +03:00
Jean-Sébastien Pédron 6c5707865a tools/terraform: Use precompiled Elixir when using Erlang 22 
With Erlang 22, Elixir fails to compile, so use the precompiled archive.
 2019-04-15 15:54:09 +02:00
Jean-Sébastien Pédron d486037e73 tools/terraform: Fix use of `$elixir_version` in setup-erlang.sh 
The variable is declared as read-only, but we overwrite it erroneously
in `kiex_install_elixir`. In this function, we didn't intend to use the
global variable, so let's rename the local variable to
`$latest_elixir_version`.
 2019-04-15 13:53:40 +02:00
Jean-Sébastien Pédron 052f90175c tools/terraform: Add Erlang 21.3 support 2019-03-20 11:48:26 +01:00
Spring Operator 70428fb0d0 URL Cleanup 
This commit updates URLs to prefer the https protocol. Redirects are not followed to avoid accidentally expanding intentionally shortened URLs (i.e. if using a URL shortener).

# HTTP URLs that Could Not Be Fixed
These URLs were unable to be fixed. Please review them to see if they can be manually resolved.

* http://blog.listincomprehension.com/search/label/procket (200) with 1 occurrences could not be migrated:
   ([https](https://blog.listincomprehension.com/search/label/procket) result ClosedChannelException).
* http://dozzie.jarowit.net/trac/wiki/TOML (200) with 1 occurrences could not be migrated:
   ([https](https://dozzie.jarowit.net/trac/wiki/TOML) result SSLHandshakeException).
* http://dozzie.jarowit.net/trac/wiki/subproc (200) with 1 occurrences could not be migrated:
   ([https](https://dozzie.jarowit.net/trac/wiki/subproc) result SSLHandshakeException).
* http://e2project.org (200) with 1 occurrences could not be migrated:
   ([https](https://e2project.org) result AnnotatedConnectException).
* http://nitrogenproject.com/ (200) with 2 occurrences could not be migrated:
   ([https](https://nitrogenproject.com/) result ConnectTimeoutException).
* http://proper.softlab.ntua.gr (200) with 1 occurrences could not be migrated:
   ([https](https://proper.softlab.ntua.gr) result SSLHandshakeException).
* http://yaws.hyber.org (200) with 1 occurrences could not be migrated:
   ([https](https://yaws.hyber.org) result AnnotatedConnectException).
* http://choven.ca (503) with 1 occurrences could not be migrated:
   ([https](https://choven.ca) result ConnectTimeoutException).

# Fixed URLs

## Fixed But Review Recommended
These URLs were fixed, but the https status was not OK. However, the https status was the same as the http request or http redirected to an https URL, so they were migrated. Your review is recommended.

* http://fixprotocol.org/ (301) with 1 occurrences migrated to:
  https://fixtrading.org ([https](https://fixprotocol.org/) result SSLHandshakeException).
* http://erldb.org (UnknownHostException) with 1 occurrences migrated to:
  https://erldb.org ([https](https://erldb.org) result UnknownHostException).
* http://~s:~b/~s (UnknownHostException) with 1 occurrences migrated to:
  https://~s:~b/~s ([https](https://~s:~b/~s) result UnknownHostException).

## Fixed Success
These URLs were switched to an https URL with a 2xx status. While the status was successful, your review is still recommended.

* http://cloudi.org/ with 27 occurrences migrated to:
  https://cloudi.org/ ([https](https://cloudi.org/) result 200).
* http://erlware.org/ with 1 occurrences migrated to:
  https://erlware.org/ ([https](https://erlware.org/) result 200).
* http://inaka.github.io/cowboy-trails/ with 1 occurrences migrated to:
  https://inaka.github.io/cowboy-trails/ ([https](https://inaka.github.io/cowboy-trails/) result 200).
* http://ninenines.eu with 6 occurrences migrated to:
  https://ninenines.eu ([https](https://ninenines.eu) result 200).
* http://tbaggery.com/2008/04/19/a-note-about-git-commit-messages.html with 1 occurrences migrated to:
  https://tbaggery.com/2008/04/19/a-note-about-git-commit-messages.html ([https](https://tbaggery.com/2008/04/19/a-note-about-git-commit-messages.html) result 200).
* http://www.actordb.com/ with 2 occurrences migrated to:
  https://www.actordb.com/ ([https](https://www.actordb.com/) result 200).
* http://www.cs.kent.ac.uk/projects/wrangler/Home.html with 1 occurrences migrated to:
  https://www.cs.kent.ac.uk/projects/wrangler/Home.html ([https](https://www.cs.kent.ac.uk/projects/wrangler/Home.html) result 200).
* http://www.rebar3.org with 1 occurrences migrated to:
  https://www.rebar3.org ([https](https://www.rebar3.org) result 200).
* http://contributor-covenant.org with 1 occurrences migrated to:
  https://contributor-covenant.org ([https](https://contributor-covenant.org) result 301).
* http://contributor-covenant.org/version/1/3/0/ with 1 occurrences migrated to:
  https://contributor-covenant.org/version/1/3/0/ ([https](https://contributor-covenant.org/version/1/3/0/) result 301).
* http://inaka.github.com/apns4erl with 1 occurrences migrated to:
  https://inaka.github.com/apns4erl ([https](https://inaka.github.com/apns4erl) result 301).
* http://inaka.github.com/edis/ with 1 occurrences migrated to:
  https://inaka.github.com/edis/ ([https](https://inaka.github.com/edis/) result 301).
* http://lasp-lang.org/ with 1 occurrences migrated to:
  https://lasp-lang.org/ ([https](https://lasp-lang.org/) result 301).
* http://saleyn.github.com/erlexec with 1 occurrences migrated to:
  https://saleyn.github.com/erlexec ([https](https://saleyn.github.com/erlexec) result 301).
* http://www.mozilla.org/MPL/ with 9 occurrences migrated to:
  https://www.mozilla.org/MPL/ ([https](https://www.mozilla.org/MPL/) result 301).
* http://zhongwencool.github.io/observer_cli with 1 occurrences migrated to:
  https://zhongwencool.github.io/observer_cli ([https](https://zhongwencool.github.io/observer_cli) result 301).

# Ignored
These URLs were intentionally ignored.

* http://localhost:~w~s/~s with 1 occurrences
 2019-03-20 03:14:12 -05:00
Michael Klishin ecdb3e4da7 Use ESL packages for Erlang 21.1 and 21.2 2018-12-24 20:30:10 +03:00
Michael Klishin e180f545c1 Terraform variables: list Erlang 21.1 and 21.2 2018-12-24 20:27:49 +03:00
Luke Bakken 15e39f2d3c Use sed to set DNS.1 in SAN since LibreSSL does not do env vars correctly 2018-08-27 08:22:05 -07:00
Luke Bakken 52b6a0a2f5 Ensure HOSTNAME is exported 2018-08-27 07:56:59 -07:00
Luke Bakken 0f4ef6fbdb Add HOSTNAME as DNS.1 in server_alt_names 2018-08-27 07:41:41 -07:00
Arnaud Cogoluègnes 465780e2f1 Add localhost as SAN to server certificate 
This helps for Java client hostname verification tests on CI: the CI
containers resolve the hostname to an external IP address and the broker
doesn't accept the connection for guest because it's not from localhost.
By using localhost in the server certificate SAN, hostname verification
is enforced and the connection is from localhost.
 2018-08-27 15:06:46 +02:00
Jean-Sébastien Pédron dd0ea26787 rabbit_ct_vm_helpers, tools/terraform: Pin Elixir version 
... if one is specified.

Out-of-the box, rabbit_ct_vm_helpers will take the version of the
Elixir installed on the host starting the testsuite.
 2018-08-27 13:09:45 +02:00
Jean-Sébastien Pédron d3343e3cc3 tools/terraform/direct-vms/templates/setup-erlang.sh: Use packages for Erlang 21.0 
We were still building Erlang 21.0 from sources. Elixir was also
compiled from sources, but 1.7.0-rc.1 was automatically selected and the
build fails.

Instead of trying to fix this issue with Elixir, let's just install
Erlang 21.0 and Elixir from Debian packages and be done with it.
 2018-07-20 18:12:28 +02:00
Jean-Sébastien Pédron 64298fea88 rabbit_ct_vm_helpers, tools/terraform: Add Erlang app version in VM names 
This helps to identify which VM belongs to which CI pipeline.
 2018-06-22 16:12:35 +02:00
Michael Klishin 6b5f3d343f Use OTP 21 GA, pin OTP 22 to a recent master commit 
For now, maybe we will build the tip every time eventually.
 2018-06-22 14:31:06 +03:00
Michael Klishin 253f5f0182 Erlang/OTP in master is now 22.0 2018-06-22 14:23:15 +03:00