wallenstein/algo

mirror of https://github.com/trailofbits/algo.git synced 2025-04-18 15:17:07 +02:00

Author	SHA1	Message	Date
Jack Ivanov	347f864abb	Ansible upgrade 6.1 (#14500 ) * linting * update ansible * linters	2022-07-30 15:01:24 +03:00
Glenn Schlereth	7f87f51a03	Implemented architecture choice 'arm' or amd 'x86_64' for EC2 cloud (#14289 ) New `arch` config.cfg parameter is used along with the image name parameter to find the most recent OS image to be used in hosted ec2 instance. This allows the user to choose arm based instance types which was causing algo failure during cloud formation.	2021-12-14 00:31:15 +03:00
dependabot[bot]	4e739b518f	Bump ansible from 2.9.20 to 4.4.0 (#14272 ) * Bump ansible from 2.9.20 to 4.4.0 Bumps [ansible](https://github.com/ansible/ansible) from 2.9.20 to 4.4.0. - [Release notes](https://github.com/ansible/ansible/releases) - [Commits](https://github.com/ansible/ansible/commits) --- updated-dependencies: - dependency-name: ansible dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * ansible core * aadd vagrant and fix jinja * bool variable fix * ec2 task deprecation * bool fix * azure requirements fix * cloudscale fix * scaleway fix * openstack fixes Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jack Ivanov <e601809@gmail.com> Co-authored-by: Jack Ivanov <17044561+jackivanov@users.noreply.github.com>	2021-10-31 12:58:35 +03:00
Glenn Schlereth	4464be8259	Added support for EC2 Spot instances (#14248 ) If new instance_market_type config.cfg variable specifies 'spot' instead of 'on-demand' then the stack.yml creates a LaunchTemplate resource using spot option. The create EC2 Instance command uses that LaunchTemplate.	2021-08-14 15:26:17 +03:00
David Myers	b1d1491a66	Clarify AWS prompts (#1861 )	2020-08-08 14:10:14 +03:00
Jack Ivanov	d635c76b50	Change default SSH port and introduce cloud-init support (#1636 ) * Change default SSH port * Iptables to ansible_ssh_port * Add Scaleway * permissions and groups fixes * update firewall docs * SSH fixes * add missing cloudinit to cloud-azure * remove ansible_ssh_user from the tests * congrats message fix	2020-01-07 14:28:19 +01:00
Jack Ivanov	8bdd99c05d	Refactor to support Ansible 2.8 (#1549 ) * bump ansible to 2.8.3 * DigitalOcean: move to the latest modules * Add Hetzner Cloud * Scaleway and Lightsail fixes * lint missing roles * Update roles/cloud-hetzner/tasks/main.yml Add api_token Co-Authored-By: phaer <phaer@phaer.org> * Update roles/cloud-hetzner/tasks/main.yml Add api_token Co-Authored-By: phaer <phaer@phaer.org> * Try to run apt until succeeded * Scaleway modules upgrade * GCP: Refactoring, remove deprecated modules * Doc updates (#1552) * Update README.md Adding links and mentions of Exoscale aka CloudStack and Hetzner Cloud. * Update index.md Add the Hetzner Cloud to the docs index * Remove link to Win 10 IPsec instructions * Delete client-windows.md Unnecessary since the deprecation of IPsec for Win10. * Update deploy-from-ansible.md Added sections and required variables for CloudStack and Hetzner Cloud. * Update deploy-from-ansible.md Added sections for CloudStack and Hetzner, added req variables and examples, mentioned environment variables, and added links to the provider role section. * Update deploy-from-ansible.md Cosmetic changes to links, fix typo. * Update GCE variables * Update deploy-from-script-or-cloud-init-to-localhost.md Fix a finer point, and make variables list more readable. * update azure requirements * Python3 draft * set LANG=c to the p12 password generation task * Update README * Install cloud requirements to the existing venv * FreeBSD fix * env->.env fixes * lightsail_region_facts fix * yaml syntax fix * Update README for Python 3 (#1564) * Update README for Python 3 * Remove tabs and tweak instructions * Remove cosmetic command indentation * Update README.md * Update README for Python 3 (#1565) * DO fix for "found unpermitted parameters: id" * Verify Python version * Remove ubuntu 16.04 from readme * Revert back DigitalOcean module * Update deploy-from-script-or-cloud-init-to-localhost.md * env to .env	2019-09-28 08:10:20 +08:00
Jack Ivanov	95eddccfb7	EC2: Enable EBS single step encryption by default (#1556 ) * EC2: EBS single step encryption by default * return back the encryption variable	2019-08-26 17:25:29 +02:00
Jack Ivanov	545ad480a4	Add tags to EC2 encrypted images (#1530 )	2019-07-27 15:47:17 +02:00
Jack Ivanov	c27aed708a	EC2 eip facts authentication fix (#1454 ) * EC2 eip facts authentication fix * add region to ec2_eip_facts	2019-05-30 16:13:48 +02:00
Elliot Murphy	e3a6170ae6	AWS support for existing EIP (revised) (#1292 ) * Support for associating to existing AWS Elastic IP Signed-off-by: Elliot Murphy <statik@users.noreply.github.com> * Backport ec2_eip_facts module for EIP support This means that EIP support no longer requires Ansible 2.6 The local fact module has been named ec2_elasticip_facts to avoid conflict with the ec2_eip_facts module whenever the Ansible 2.6 upgrade takes place. Signed-off-by: Elliot Murphy <statik@users.noreply.github.com> * Update from review feedback. Signed-off-by: Elliot Murphy <statik@users.noreply.github.com> * Move to the native module. Add additional condition for existing Elastic IP	2019-05-20 14:40:51 +02:00
Jack Ivanov	25513cf925	Refactoring, Linting and additional tests (#1397 ) * Refactoring, Linting and additional tests * Vultr: Undefined variable and deprecation notes fix * Travis-CI enable linters * Azure: Update python requirements * Update main.yml * Update install.sh * Add missing roles to ansible-lint * Linting for skipped roles * add .ansible-lint config	2019-04-26 11:48:28 -04:00
Jack Ivanov	c4ea88000b	Refactoring to support roles inclusion (#1365 )	2019-04-08 16:20:34 -04:00
Jack Ivanov	30beadb949	Modify naming in the cloud resources and client config files (#1353 ) * Modify naming in the cloud resources and client config files * Azure template: Eliminate unneeded variables	2019-03-15 18:16:26 +01:00
Jack Ivanov	a66d8f0069	on-build python venvs (#1199 )	2018-11-22 13:04:58 -05:00
Jack Ivanov	e8947f318b	Large refactor to support Ansible 2.5 (#976 ) * Refactoring, booleans declaration and update users fix * Make server_name more FQDN compatible * Rename variables * Define the default value for store_cakey * Skip a prompt about the SSH user if deploying to localhost * Disable reboot for non-cloud deployments * Enable EC2 volume encryption by default * Add default server value (localhost) for the local installation Delete empty files * Add default region to aws_region_facts * Update docs * EC2 credentials fix * Warnings fix * Update deploy-from-ansible.md * Fix a typo * Remove lightsail from the docs * Disable EC2 encryption by default * rename droplet to server * Disable dependencies * Disable tls_cipher_suite * Convert wifi-exclude to a string. Update-users fix * SSH access congrats fix * 16.04 > 18.04 * Dont ask for the credentials if specified in the environment vars * GCE server name fix	2018-08-27 10:05:45 -04:00
Jack Ivanov	3488e660ad	Add WireGuard support for Android (#910 ) * WireGuard Implementation * Update client-android.md * Update README.md * WireGuard unattended upgrades * Update README.md * reload-module-on-update and syntax fix * SaveConfig to true * Azure firewall. Fixes #962 * Update README.md * Update client-android.md	2018-05-24 08:15:27 -07:00
Jack Ivanov	d27b849f24	Ubuntu1804 (#925 ) - Fixes #897 #944 #956 Work in progress. Lightsail is not ready for Ubuntu 18.04 yet - [x] DigitalOcean ~~- [ ] Amazon Lightsail~~ - [x] Amazon EC2 - [x] Microsoft Azure - [x] Google Compute Engine - [x] Scaleway - [x] OpenStack (DreamCompute optimised)	2018-05-24 07:08:14 -07:00
Jack Ivanov	35e526a5a3	IPv6 fixes (#930 )	2018-05-08 13:55:17 -07:00
Jack Ivanov	7e07c35474	proper cloudformation template (#815 )	2018-03-02 16:13:49 -05:00
Jack Ivanov	02427910de	Ansible 2.4, Lightsail, Scaleway, DreamCompute (OpenStack) integration (#804 ) * Move to ansible-2.4.3 * Add Lightsail support #623 * Fixing the EC2 deployment * Scaleway integration #623 * OpenStack cloud provider (DreamCompute optimised) #623 * Remove the security role * Enable unattended-upgrades for clouds * New requirements to make Azure and GCE work	2018-03-02 07:55:54 -05:00
Christopher J. Pilkington	a225bde2b8	Specify EIP domain (#521 )	2017-05-06 09:16:28 -04:00
Jack Ivanov	6f170982aa	move to Elastic IP (#512 )	2017-05-04 08:33:31 -04:00
Jack Ivanov	bd348af9c2	Implementing blocks and additional fail hints #487 (#497 ) change the troubleshooting url	2017-04-29 10:48:25 -04:00
Jack Ivanov	c3fcfe5d0d	Let users choose the distro version #449 (#466 ) Make dpdaction great again add 1704 to travis Make EC2 image name more convenient modify apparmor profile	2017-04-22 17:06:10 -04:00
Andy Boutte	76cdc69548	CF tested and working for EC2 deployment (#431 ) * AWS CloudFormation #132 * IPv6 EC2 draft * CF tested and working for EC2 deployment * IPv6 Implementation, EC2, Cloudformation * Fixed ipv6 networking * adding ip6tables rule for DHCP on AWS	2017-04-20 18:04:57 -04:00
Jack Ivanov	9c12272c8c	Python False-y values should be accepted. #417 (#426 )	2017-04-16 16:40:24 -04:00
Jack Ivanov	16329fe088	Instance size (#404 ) * Escaping Special Characters #388 * Make instance sizes more flexible to edit #355	2017-04-16 10:19:47 -04:00
James Hale	41ed682213	Reduce VPC CIDR size to /16 (#341 )	2017-04-02 15:48:44 -04:00
Matt Mankins	b8d2dc68bb	Change EC2 VPC CIDR blocks to uncommon non-routable addresses (#335 )	2017-04-02 00:53:53 -04:00
Josh Watson	84a3b5f675	Change EC2 VPC CIDR blocks to non-routable addresses. (#330 ) The previous address ranges were actually routable addresses, which caused some concern for some people because it looked suspicious in tracert. The new CIDR blocks are non-routable addresses, which resolves this concern.	2017-04-01 00:20:08 -04:00
James Hale	3b3fb601ef	Fix name tag key (#282 )	2017-03-28 21:18:33 -04:00
Jack Ivanov	0aff3ebb6f	EC2 instance_initiated_shutdown_behavior to terminate. Close #124	2017-03-06 22:04:00 +03:00
Jack Ivanov	f7da2e3888	EC2 dynamic enventory. Fixes #73	2017-03-05 23:19:15 +03:00
Jack Ivanov	5cbf125202	Some refactoring. Disable unneeded variables.	2017-03-05 21:33:01 +03:00
Defunct	b0f9ab94b1	ec2_ami_copy boto3 module, KMS, tagging, AMI caching (Encrypted support)	2017-01-05 19:36:30 +00:00
Defunct	0eb048383a	refactored ec2 encryption	2017-01-05 17:36:45 +00:00
Jack Ivanov	1a81372192	EC2 Encryption Implemented #133	2017-01-05 17:36:45 +00:00
Defunct	a9dd0af3fe	resolves #176 + other ec2 env issues	2016-12-21 05:55:11 +00:00
Jack Ivanov	1d07200c74	generating ssh-keys #152 #151 #112	2016-12-17 14:54:44 +03:00
Jack Ivanov	f1715c4e0b	random password for the p12 certificates #135	2016-12-14 18:49:47 +03:00
Jack Ivanov	03c805cb87	reorganize the wait_for functions #159	2016-12-13 21:58:45 +03:00
Jack Ivanov	517366f194	EC2 fix	2016-12-13 20:34:27 +03:00
Jack Ivanov	50e9dbfce0	draft EC2 #150 #157	2016-12-13 19:50:18 +03:00
kennwhite	016a8c7708	Change default instance to free tier (t2.micro) I know this is a bit goofy, but the t2.nano is not in the free tier for AWS even though it is smaller than the t2.micro instance. See: https://aws.amazon.com/blogs/aws/ec2-update-t2-nano-instances-now-available/ (the "PS" at the bottom), confirmed on pricing page. The difference is $4.30 per mo vs. free/$8.76 per mo. Maybe add this to config questions, but at least one reviewer has noted this as an issue for his just-setup AWS free account.	2016-12-12 15:14:58 -05:00
Defunct	27e5a4feca	Sort by latest AMI - resolves #140	2016-12-09 20:45:12 +00:00
Jack Ivanov	ad162f55a2	here were no credentials #127	2016-11-29 18:46:58 +03:00
defunct	e40545cce5	opens #126 This commit reverts changes in `437d659` to avoid breaking changes.	2016-11-27 12:55:05 -05:00
Defunct	437d659eb6	resolves #126 - incorrect private key usage w/o ssh-agent	2016-11-26 17:42:46 +00:00
Defunct	1dc6e1a0fa	resolves #118 - AWS env keys	2016-11-26 17:39:24 +00:00

1 2

60 commits