- Oct 29, 2009
-
-
Michael Hanselmann authored
This new function supports two schemes for passwords: - Old-style cleartext passwords - Hashed passwords according to RFC2617 (H(A1)) Schemes are differentiated by their prefix, a concept also used in OpenLDAP. Cleartext passwords can no longer start with an opening brace ("{") unless they're prefixed with "{cleartext}" (case insensitive). Currently there's no documentation for rapi_users at all. It'll be in a consecutive patch. Signed-off-by:Michael Hanselmann <hansmi@google.com> Reviewed-by:
Iustin Pop <iustin@google.com>
-
- Oct 28, 2009
-
-
Michael Hanselmann authored
Also use grep only to convert find's output to an exit status. Signed-off-by:
-
Iustin Pop authored
Our admin guide was very very trivial. This patch updates it to contain advice on when to use which commands, removes the instance administration part from the installation guide (moved to the admin guide), and adds a walkthrough document that should be useable as a starting point for new admins. The patch also adds emacs variables to the documents, and rewraps some which were not already at 72 chars. The doc updates also show backwards-compatible commands for Ganeti 2.0, as we don't have a good up-to-date 2.0 document and people might refer to this set of documentation even when running that. Signed-off-by:
-
Iustin Pop authored
For the Nth time, re-fix shadowing of outer-scope variable :) Signed-off-by:
-
Iustin Pop authored
This patch adds support for the -o+field,… format that the other list commands accept and changes the format of the allocatable field from simply str(bool) to Y/N. Signed-off-by:
-
Iustin Pop authored
To reduce confusion, the following gnt-node commands are renamed: - physical-volumes → list-storage - modify-volume → modify-storage - repair-volume → repair-storage The NEWS file is update accordingly and it also gets emacs local variables. Signed-off-by:
-
Iustin Pop authored
pylint is your friend, since the compiler doesn't exist. Signed-off-by:
-
- Oct 27, 2009
-
-
Michael Hanselmann authored
This is particularily useful for “gnt-cluster redist-conf”, but also for all other cases where the configuration files are rewritten on other nodes. $ gnt-cluster redist-conf … Copy of file /var/lib/ganeti/config.data to node … failed: Error while executing backend function: [Errno 1] Operation not permitted … Error while uploading ssconf files to node …: Error while executing backend function: [Errno 1] Operation not permitted $ gnt-node modify --offline no --force node3.example.com … - WARNING: Not enough master candidates (desired 10, new value will be 4) … Copy of file /var/lib/ganeti/config.data to node node8.example.com failed: Error while executing backend function: [Errno 1] Operation not permitted Modified node node3.example.com - offline -> True - master_candidate -> auto-demotion due to offline Signed-off-by:
-
Michael Hanselmann authored
This reduces the size of the script by about 9 kB. Signed-off-by:
-
Michael Hanselmann authored
Signed-off-by:
René Nussbaumer <rn@google.com>
-
Michael Hanselmann authored
This was implemented in 350ecfec and reverted in 700bb843 after it broke “make distcheck”. With other changes in this patch series this will work now. Contributing to the original problem was that the news.rst file was not distributed. When we distribute the build documentation, the source must also be included (see Automake manual). Signed-off-by:
Guido Trotter <ultrotter@google.com>
-
Michael Hanselmann authored
Signed-off-by:
-
Michael Hanselmann authored
Signed-off-by:
-
Michael Hanselmann authored
This patch also adds an explicit list of all files written by sphinx (“docoutput”). By using an explicit list the build process is more predictable and will allow us to include the NEWS file again. Signed-off-by:
-
Michael Hanselmann authored
Signed-off-by:
-
Michael Hanselmann authored
Signed-off-by:
-
Iustin Pop authored
Commits d3ed23ff and 4eb62659 broke gnt-debug due to renamed option targets. Sorry again! Signed-off-by:
-
Iustin Pop authored
Commit 2bb5c911 moved around and changed the _RunAllocator function in the DiskReplace → TaskLet conversion, but in the process it changed the relocate_from argument from a list of nodes to just the secondary node. This breaks the protocol and current iallocator scripts. This patch fixes that but also adds a local variable 'instance' since it's not nice to write self.instance so many times. Signed-off-by:
-
- Oct 26, 2009
-
-
Guido Trotter authored
In 95b487bb we changed InstanceIpToNodePrimaryIpQuery to be able to query multiple instances at once. We also need to be able to query ips belonging to a specific nic link, so what we do is: 1) Move the "query" argument to a dict, containing different fields 2) Explicit the "query for a single ip" or "query for a list" options. Signed-off-by:
-
Guido Trotter authored
We were already half-doing it, but this completes the process. 1) We don't maintain a list of ips or an ip->instance map 2) We add a new link,ip->instance map (link->ips list we had) 3) We add the link parameter to GetInstanceByIp (making it GetInstanceByLinkIp) 4) We change the GetInstanceByIp caller to pass None as link (thus for now using only the default link) Signed-off-by:
-
Guido Trotter authored
GetDefaultNicParams returns the default nic parameters. GetDefaultNicLink returns the default nic link. Signed-off-by:
-
Guido Trotter authored
Since we have this variable and use it in other places, remove the only leftover hardcoded place. Signed-off-by:
Olivier Tharan <olive@google.com>
-
Guido Trotter authored
It's used by some functions defined there. Signed-off-by:
-
Iustin Pop authored
This allows using an email address (as is) as part of a tag. The main problem that could arise is when parsing tags from a shell script, but (AFAIK) '@' is not a special character when used in values (happy to be corrected if not true). The patch also moves the re to be compiled at class init time, should use less resources; in my tests it is fine to use a compiled re from multiple threads. Signed-off-by:
-
Iustin Pop authored
This was broken by me in 064c21f8, sorry! Signed-off-by:
-
Iustin Pop authored
Signed-off-by:
-
- Oct 23, 2009
-
-
Guido Trotter authored
Currently we can start/stop the various subdaemons, but not confd. Signed-off-by:
-
Michael Hanselmann authored
The “result” variable may not be set and/or come from the previous loop. Signed-off-by:
-
- Oct 22, 2009
-
-
Michael Hanselmann authored
Signed-off-by:
Ken Wehr <ksw@google.com>
-
Guido Trotter authored
The /32 suffix is useless, since the kernel already assumes single-host, if no suffix is specified. Moreover we prefer these routes to be "static" so that routing daemons, if present, won't mess with them. Signed-off-by:
-
Michael Hanselmann authored
The format changed in the meantime and should be self-explanatory. Signed-off-by:
-
Guido Trotter authored
In routing mode we are tweaking a few parameters on the interface. With this patch we'll tweak both the v4 and v6 ones. Signed-off-by:
-
Guido Trotter authored
Until now we relied on traffic from instances being policy routed via a rule based on the instance network. With this change we can enforce it on the instance interfaces. Since the ip rules survive interface disappearing and reappearing, we need first to remove leftover rules, and then to apply the new one, when creating the interface. Signed-off-by:
-
Guido Trotter authored
Signed-off-by:
-
Ken Wehr authored
Allows the initialization of a cluster without the creation or distribution of SSH key pairs. Includes changes for LeaveCluster and RPC. Signed-off-by:
-
Flavio Silvestrow authored
Signed-off-by:
Flavio Silvestrow <flaviops@google.com> Signed-off-by:
-
Iustin Pop authored
In backend.InstanceShutdown(), there is a race condition between checking that the instance exists and trying to shut it down which translates sometime in error messages like: Tue Oct 20 20:08:30 2009 - WARNING: Could not shutdown instance: Failed to force stop instance instance9: Failed to stop instance instance9: exited with exit code 1, Error: Domain 'instance9' does not exist. To fix this, we ignore any hypervisor StopInstance() errors if the instance doesn't exist anymore, since our purpose (to make the instance go away) is already accomplished. Signed-off-by:
-
Iustin Pop authored
Commit e4e9b806 introduced two problems in backend.InstanceShutdown(): - first, it reduced the check interval significantly (especially for the first few checks); there are very few production VMs that shutdown in one second, and while not breaking anything this creates unnecessary load for the hypervisor - second, a wrong test added to the while condition (“not tried_once”) means that we only sleep once for an instance, and after that we immediately kill it forcefully These two together means that any instance which is not lucky enough to finish in roughly 1-1.5 seconds (the time it takes to sleep and verify again the instance list) will have this happen: 2009-10-21 23:33:46,034: pid=16634 INFO Called for inst9 w. False/False 2009-10-21 23:33:47,440: pid=16634 ERROR Shutdown of 'inst9' unsuccessful, forcing 2009-10-21 23:33:47,440: pid=16634 INFO Called for inst9 w. True/False The “Called…” are logs from the hypervisor shutdown function. This means of course that at restart time: [12775866.644682] EXT3-fs: INFO: recovery required on readonly filesystem. [12775866.644689] EXT3-fs: write access will be enabled during recovery. [12775868.533674] kjournald starting. Commit interval 5 seconds [12775868.533697] EXT3-fs: sda1: orphan cleanup on readonly fs [12775868.551797] EXT3-fs: sda1: 12 orphan inodes deleted [12775868.551803] EXT3-fs: recovery complete. [12775868.586275] EXT3-fs: mounted filesystem with ordered data mode. This patch reverts the broken test and changes the sleep to a fixed duration of five seconds, since it makes no sense to check that often for shutdown (and after ~20 seconds we anyway reach a stable value of five seconds). Signed-off-by:
-
Iustin Pop authored
Commit 4ad45119 changed the KVM hypervisor to send multiple shutdown requests to the monitor, but it didn't change this for the Xen hypervisor. We simply remove the return on retry model, since we do want to send multiple shutdown signals for both Xen and KVM (even if the behaviour is not perfect, they should behave the same). Signed-off-by:
-
- Oct 21, 2009
-
-
Michael Hanselmann authored
Also add assertions to avoid missing attributes in the future. They won't be included in optimized bytecode. Signed-off-by:
-
