1. 04 May, 2015 1 commit
  2. 02 Mar, 2015 1 commit
  3. 25 Sep, 2014 1 commit
  4. 12 Sep, 2014 1 commit
  5. 22 Aug, 2014 1 commit
  6. 17 Jul, 2014 1 commit
  7. 10 Jul, 2014 1 commit
  8. 12 Jun, 2014 1 commit
    • Dimitris Aragiorgis's avatar
      Support disk hotplug with userspace access · 6b31e28f
      Dimitris Aragiorgis authored
      
      
      Before any hotplug action we assemble the block device. Currently
      call_blockdev_assemble() returns the link_name as calculated by
      _SymlinkBlockDev().
      
      With userspace support we have to return the drive_uri as calculated
      by _CalculateDeviceURI() as well, in order for the drive_add monitor
      command to be able to use it.
      
      Additionally with this patch the runtime files are properly updated
      to include the drive uri as well, and thus, upon instance migration,
      the target process will be started with the correct drive options.
      Signed-off-by: default avatarDimitris Aragiorgis <dimara@grnet.gr>
      Signed-off-by: default avatarKlaus Aehlig <aehlig@google.com>
      Reviewed-by: default avatarKlaus Aehlig <aehlig@google.com>
      6b31e28f
  9. 10 Jun, 2014 3 commits
  10. 02 Jun, 2014 1 commit
  11. 30 May, 2014 3 commits
  12. 22 May, 2014 1 commit
  13. 14 May, 2014 4 commits
  14. 05 May, 2014 1 commit
  15. 28 Apr, 2014 1 commit
  16. 08 Apr, 2014 1 commit
  17. 02 Apr, 2014 1 commit
  18. 17 Mar, 2014 1 commit
  19. 14 Mar, 2014 3 commits
  20. 11 Mar, 2014 4 commits
  21. 07 Mar, 2014 1 commit
  22. 04 Mar, 2014 1 commit
  23. 28 Feb, 2014 1 commit
  24. 27 Feb, 2014 1 commit
  25. 20 Feb, 2014 1 commit
  26. 14 Feb, 2014 1 commit
    • Helga Velroyen's avatar
      Use node UUID as client certificate serial number · ab4b1cf2
      Helga Velroyen authored
      
      
      It turns out, that some implementations of OpenSSL are more
      pedantic in checking the certficates than others. In this
      particular case, the SSL connection could not be
      established when the serial number of the certificates
      was not unique.
      
      To avoid this problem, this patch extends Ganeti's X509
      infrastructure to set the certificate's serial
      number. In case of client certificates, we now use the
      node's UUID as serial number, because the UUIDs are
      assumed to be unique in a cluster. This is however still
      not complying to how SSL was designed to be used, but at
      least it is a lot better than setting every serial number
      to 1, which was used before and is still used for other
      certificates than the client certificate.
      Signed-off-by: default avatarHelga Velroyen <helgav@google.com>
      Reviewed-by: default avatarKlaus Aehlig <aehlig@google.com>
      ab4b1cf2
  27. 07 Feb, 2014 2 commits