From eea8211c4a2721bae593951c2e7203a6f06e8e4b Mon Sep 17 00:00:00 2001
From: Jack Hodgkiss <identity@jackhodgkiss.uk>
Date: Tue, 26 Nov 2024 09:42:20 +0000
Subject: [PATCH 1/2] feat: add support for `ssh-sk` to `nova`

Support for `ssh-sk` keys was recently added in the cryptography package https://github.com/pyca/cryptography/pull/10608. By installing version `43.0.3` we can benefit from such support within `Nova`
---
 etc/kayobe/kolla.yml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/etc/kayobe/kolla.yml b/etc/kayobe/kolla.yml
index 68a3da9f5..545fce346 100644
--- a/etc/kayobe/kolla.yml
+++ b/etc/kayobe/kolla.yml
@@ -346,6 +346,11 @@ kolla_build_blocks:
         && grafana-cli plugins install grafana-opensearch-datasource
   ironic_inspector_header: |
     ADD additions-archive /
+  nova_base_footer: |
+    {% raw %}
+    RUN {{ macros.upper_constraints_version_change('cryptography', '42.*', '43.0.3') }}
+    RUN {{ macros.upper_constraints_version_change('eventlet', '0.35.*', '0.36.1') }}
+    {% endraw %}
 
 # Dict mapping image customization variable names to their values.
 # Each variable takes the form:

From 36a0f44899ead5993883f23da669df41f65ce4f8 Mon Sep 17 00:00:00 2001
From: Jack Hodgkiss <identity@jackhodgkiss.uk>
Date: Tue, 26 Nov 2024 11:27:17 +0000
Subject: [PATCH 2/2] feat: bump `nova` kolla image tags

The `Nova` containers with the tag `20241126T110410` provides support
for `ssh-sk` providing users the option of improving the security of SSH
access to their instances.

[skip ci]
---
 .../notes/add-sk-support-for-nova-42679a8f04225b90.yaml    | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 releasenotes/notes/add-sk-support-for-nova-42679a8f04225b90.yaml

diff --git a/releasenotes/notes/add-sk-support-for-nova-42679a8f04225b90.yaml b/releasenotes/notes/add-sk-support-for-nova-42679a8f04225b90.yaml
new file mode 100644
index 000000000..b237616d7
--- /dev/null
+++ b/releasenotes/notes/add-sk-support-for-nova-42679a8f04225b90.yaml
@@ -0,0 +1,7 @@
+---
+features:
+  - |
+    Add support for using `ssh-sk` key types within Nova providing
+    users with the option of improving security of SSH access to
+    their instances.
+