/reviewed-on !175

/reviewed-on !172

/reviewed-on !169

certificate-authority software release and stack was renamed to caucase

This commit contain modifications that allow ocropy and scipy to be
installed as eggs. Extra ld_path are added to python to allow the former
to run scipy (that needs libstdc++) inside testnodes.

Whitespaces matter to exporter.exclude:
- patterns must *not* start with a space
- file *must* end with a newline

Also, de-duplicate paths.

  In order to make an resilient backup, resilience stack wait for the internal backup finishes,
  before proceed to notify the pbs. This commit keeps the default behaviour (wait for 10 min w/o changes),
  however allows test software release adopt a much shorter waiting time (1min).

  With this commit we can accelerate resilience tests in several minutes.

  This fix the real location of the log after use logrotate stack.

Makes it easier to deploy a functional replication setup.

Stop breaking this tool for everyone developping on slapos.

  Allow set software-root via parameters allow the webrunner inside a erp5testnode,
  recover the the previous builds from previous resilient tests, and only update (instead build from scratch)
  This is a typical usage on the webrunner (keep updating SR), so there is no
  problem on use this approach on erp5testnode tests.

The CA python egg is here: https://lab.nexedi.com/vpelletier/caucase
instance-certificate-authority.cfg.jinja2.in deploy a CA server which expose an API on HTTP,
all request are done using GET, PUT, DELETE and POST on that API.
CA server use ngix + gunicorn (for wsgi)

Auth server is an apache httpd which validate client certificate for authentification.
It autmatically request a signed certificate to CA and use it in apache configuration.

client request will be validated using:
SSLVerifyClient require in apache config

The CA expose two URL:
${certificate-authority-server:url} which is https URL used to access admin interface
${certificate-authority-server:insecure-url} is the HTTP url which can be used to post csr and download certificate

  This intent to speed up the download (only) of cache by using traffic server

  Simple Don't repeat yourself.

  This change allow us simplify accross the instances usage of logrotate

  as buildout.hash.cfg uses templates/.. filename has to be defined here again.

 Life is too short to update md5sum by hand.

Added password generation and monitoring to jupyter instances. Todo: Password editing at the monitor.

A redo of [this](!148) merge request. I messed up with some merge conflicts on the old one and thought it would be faster to make a new one...

@alain.takoudjou  @Tyagov 

/reviewed-on !156

stack/slapos: version up zc.buildout 2.5.2+slapos007 to solve issues with very long shebang scripts.