...
Duration | Agenda Item | Requested by | Notes / Links | |||||
---|---|---|---|---|---|---|---|---|
START RECORDING | ||||||||
Info.yaml | Linux Foundation | Transfer of "info.yaml" file management at project level, ensuring immediate alignment with the project team composition and Open Source Best practices <1/21/2019>: PTL agree to take over the ownership of the info.yaml file | ||||||
Casablanca Maintenance Release
| Remaining Open Issues: https://lists.onap.org/g/onap-release/message/992 Integration Status: Casablanca Maintenance Release Integration Testing Status
Inter-dependency of some components i.e. DMaaP, CCSDK, etc. can generate some problems. PTLs should send a note if they are updating their version in the Manifest. The Manifest is the true source. Release Note - Target: January 24th, 2019:
| |||||||
Dublin Release - M1 Preparation Documentation | Additional M1 Security Checklist Items approved by TSC on 1/17 Deliverables for Planning Milestone Checklist Template M1 Milestone Review with TSC: January 24th except Integration, January 31st, 2019 Please complete your M1 Release Plan/Checklist/etc no later than January 23rd, End of your Day As part of your M1 activities,
Any concern/question for your M1? Documentation Plan Proposal - please send feedback to Sofia prior the next TSC call (1/31) Potential Dublin branch target date: RC1? To be reviewed at that time. | |||||||
minor | DEV reduced deployment footprint through ReplicaSet: 1 | Michael O'Brien | Continue dev.yaml adjustment for ReplicSet: 1 This reduction of 20+ containers is easier - just need a signoff on several PTLs that the remaining clusters actually run with 1 instance enough for dev. DEV environment deployment footprint reduction by reducing remaining ReplicaSet clusters to 1 from 2/3/5/7 - only in dev.yaml override OOM-1578 - DEV mode dev.yaml override for all remaining ReplicaSet counts still above 1 In Progress | |||||
medium | K8S Deployment Dependencies - enforcement through conditional (see AAI) To help deployment | Michael O'Brien | 2 S3P points - conditional dependencies and one found by James MacNider when testing appc healthcheck - explicit init container dependencies required by non-atomic healthchecks (1) Discussion on state of enforced dependencies - SDNC and AAI are good examples - for SDNC it will not deploy unless dmaap, consul and sdc are pre-deployed, however other projects that have compile-time/injection-time pom.xml dependencies are not reflected. Some projects have explicit deployments set in their init containers - others do not yet. Issues: Enforced dependencies block a module for dev testing unless dependencies are up For example - everyone needs AAI up - but there are no init containers referencing AAI so any module can deploy without AAI - but functionality will be limited. Proposal: Follow - as usual - AAI example - where they put in a conditional on the --set enabled flag - and don't enforce the dependency - not blocking bringing up just a single module. However if the dependency is enabled in dev/values.yaml then the dependency is checked. https://git.onap.org/oom/tree/kubernetes/aai/charts/aai-traversal/templates/job.yaml#n42
The deployment profile is useful for module-level deployments, consistent sequential deployments, CD and dev environments current state or higher level LOG-924 - Kubernetes chart dependencies - make all 105 in 87 files conditional - post yaml for cd In Progress | |||||
with above | S3P dependencies and non-atomic health check | non-atomic healthcheck requires init container dependencies 3 flavors (defined, missing, non-hc inherent) for example SDC will not pass HC unless DMaaP is deployed - this is defined in it's dependency set above But APPC also needs AAF - this is not defined - a conditional init would not help here - as aaf "must" be up for the 3rd - most pods need AAI - they do not check that it is up in their HC - and they don't define it in the init container - all fine - but a conditional init would help. | ||||||
Review of previous action items | cl664y@att.com |
| ||||||
Any Help-desk ticket in the queue? | Unreleased images will only be kept in Nexus3 for 25 days. | |||||||
Recommendation/Requirement of the RESTful implementation - does ONAP require Spring Framework? Or does it just recommend Spring Framework version via oparent? | Pamela Dragosh | I would like PTL input here because if using SpringFramework is required, then let's have PTL's vote on this as they are the ones implementing it. Also, as with oparent, the requirement to upgrade/change to SpringFramework in some current projects may have development costs. Do we grandfather those in? <1/21/2019>: Need to follow-up with LF if any preference (licensing) Springboot preferred by PTLs? AAI, LOG, CCSDK, SO, Policy, etc. – need to align the version via oparent 1.5 will not be supported after August, so the target for us is 2.x in Dublin Spring Boot supports an embedded launch script that can be used to easily run the application as a systemd or init.d linux service. The script included with Spring Boot 1.5.9 and earlier and 2.0.0.M1 through 2.0.0.M7 is susceptible to a symlink attack which allows the "run_user" to overwrite and take ownership of any file on the same system. In order to instigate the attack, the application must be installed as a service and the "run_user" requires shell access to the server. Spring Boot application that are not installed as a service, or are not using the embedded launch script are not susceptible. |
...
Action Items:
PTLs will take over the ownership of the info.yaml file
- Casablanca Maintenance Release
...