xCAT/confluent
2
0
Fork 0
mirror of https://github.com/xcat2/confluent.git synced 2024-11-23 01:53:28 +00:00
Code Issues Projects Releases Wiki Activity
3,049 Commits 39 Branches 63 Tags 18 MiB
10ac1756f1
Commit Graph

1597 Commits

Author SHA1 Message Date
Jarrod Johnson
10ac1756f1 Do not clear the entire nodes lookup on remap 
remap may only amend part of the map,
do not cause that to clear out the good data.
 2020-10-29 15:49:31 -04:00
Jarrod Johnson
95659db00a Stop trying to use generic cookie parsing 
Trying to do so while guarding against errors and sanitizing input was more code and slower
than targeting the one possible cookie we might care about.

So the code is simpler and
the performance is better, and the effect of stray cookies are mitigated.
 2020-10-29 11:36:26 -04:00
Jarrod Johnson
bddbc37e8e Fix incorrect length of random strings 2020-10-29 10:57:49 -04:00
Jarrod Johnson
af8429ebf9 Fix esxi updateboot 
Updateboot was confounded by a normal of 'file exists'
problems.
 2020-10-26 12:22:56 -04:00
Jarrod Johnson
3ac6677d2d Sanitize cookies 
If an invalid cookie from another site breaks the cookie jar,
then sanitize it.

https://bugs.python.org/issue31456

Performance enhancement through setting a header in javascript in
lieu of cookie parsing seems a wise move for the future.
 2020-10-24 11:10:52 -04:00
Jarrod Johnson
8b5744b7eb Drop attempts to restore cursor key mode 
It would corrupt F1 setup menu. This may cause problems for
ESXi TUI, but F1 in UEFI is more commonly on serial
 2020-10-23 15:32:16 -04:00
Jarrod Johnson
ed41d93de5 Add remote authentication configuration 
While our security guidelines preclude allowing host to know the password,
it is considered acceptable to do the out-of-band authentication configuration.

Have configbmc request a unicast remote configuration. This should handle authentication
as well as ensuring ongoing consistency between out of band and in-band configuration
methods.
 2020-10-20 15:51:46 -04:00
Jarrod Johnson
e7fbbe2737 Fix issues with leftover ssh sessions 
Upon connection loss, even though confluent internally
decides it is done with it, it fails to close the session.

Catch a number of these scenarios and ensure the connection closes.
 2020-10-12 09:47:24 -04:00
Jarrod Johnson
504bee2d2a Fix problem when domain was not set 
domain was checked even if domain not defined,
make sure domain is defined before trying
to use it.
 2020-10-08 10:39:29 -04:00
Jarrod Johnson
8dd66211b7 Avoid setting uuid and mac in pxe if already set 
Notably the uuid change can end up recursing. Fix the behavior that will cause never ending
loops, which in some IO situations
can end in recursion limits.
 2020-10-06 17:14:20 -04:00
Jarrod Johnson
f4395abade Deprecate attempts to use default password with SMM 
This is removed in some level of the product
 2020-10-05 16:54:58 -04:00
Jarrod Johnson
a194e2293e Fix syntax error on discovery core 2020-10-02 15:35:14 -04:00
Jarrod Johnson
d27577d2b7 Fix missing close parenthesis 2020-10-02 14:57:59 -04:00
Jarrod Johnson
1113c2a849 Improve duplicate switch attribute errors 2020-10-02 13:36:45 -04:00
Jarrod Johnson
587197e934 Refresh chained SMM discovery for SMMv2 
Additionally, amend overall
discovery to force chain validation
rather than theoretically
accepting a low mac count match.
 2020-10-02 11:45:50 -04:00
Jarrod Johnson
2ba05fb7b1 Enable IPMI on SMMv2 2020-09-29 11:21:53 -04:00
Jarrod Johnson
eeb3a3fa65 Have a clause for redfish not yet ready 
We need redfish, but redfish is slow to boot on TSM..
 2020-09-22 14:33:58 -04:00
Jarrod Johnson
56f8ca0982 Implement redfish resilient discovery for TSM 
TSM redfish stack has an issue where it refuses to recognize any
non-redfish password change. Use redfish to change.

Regretably, it takes about 10 seconds for that change to propogate
to the practical API, so we have a discovery delay now.
 2020-09-22 14:31:28 -04:00
Jarrod Johnson
9828ea5898 Fix chained smm discovery on cumulus 2020-09-14 11:02:00 -04:00
Jarrod Johnson
7bdf7afb80 Fix another mistake in chained SMM discovery 2020-09-14 08:04:41 -04:00
Jarrod Johnson
cd20a69eb6 Fix typo in function name in chained smm discovery 2020-09-14 08:03:18 -04:00
Jarrod Johnson
c3d14977f2 Update attributes documentation 2020-09-11 09:56:35 -04:00
Jarrod Johnson
31d19e9398 Fix deployment.useinsecureprotocols 
If explicitly set to 'never', it would behave as 'firmware'.
 2020-09-11 09:44:09 -04:00
Jarrod Johnson
4fe84ca6dc Fix various issues in 3.0.0 release 
If the kernel is new enough to do SKU, but the firmware doesn't have it,
fallback to model.

Fix outright mistakes in the config_port_tsm code

Up mac count from 2 to 3. If querying cumulus switches using SNMP
the switch will add its own mac to the list bringing the
total for a shared port to 3.
 2020-09-09 10:58:37 -04:00
Jarrod Johnson
6f55a4ffe0 Python 3.7 fix for ipv6 lla handling 
Python 3.7 changes behavior of recfrom (because.. why not apparently...)
Use getnameinfo to normalize the printable version.
 2020-09-02 12:12:10 -04:00
Jarrod Johnson
5e01d9c97b Handle unresolvable switches gracecfully 
Rather than a trace log,
keep it to only the event log.
 2020-09-02 11:50:50 -04:00
Jarrod Johnson
46396247bb Fix remote passphrase authentication 
For python 3 platforms, the
db hosted hash
needed the str changed
to bytes explictly.
 2020-09-02 08:54:29 -04:00
Jarrod Johnson
a737ee7622 Correct incorrect quotes 2020-08-28 10:45:54 -04:00
Jarrod Johnson
616d0bd23e Amend language of attribute help 2020-08-28 09:49:25 -04:00
Jarrod Johnson
b8ffdfbf74 Add more text to deployment.encryptboot 2020-08-28 09:45:55 -04:00
Jarrod Johnson
f6c144ae16 Amend to work more cleanly installed after xCAT 
xCAT intervenes on tftp a lot, so we need to stay away
and clearly indicate that we are.
 2020-08-28 09:43:21 -04:00
Jarrod Johnson
6ab57b8669 Add a friendlier message if tftp service is running 
The socket activation may fail due to tftp already running.
 2020-08-28 09:38:10 -04:00
Jarrod Johnson
ffe0144b2c Amend osdeploy missing tftp warning 2020-08-28 09:19:38 -04:00
Jarrod Johnson
2aa2402b73 Change to emprint from raise 
The exception stack trace is offputting.
 2020-08-28 07:18:07 -04:00
Jarrod Johnson
49eccaf68b Fix behavior on existing directory 2020-08-27 17:06:10 -04:00
Jarrod Johnson
e8eaddf375 Fix for HTTP API browser 
Python 3 had data coming in as bytes.
 2020-08-27 13:11:21 -04:00
Jarrod Johnson
bf1019c497 Have -p by itself not generate new site cpio 
It is not needed for just -p
 2020-08-27 11:43:55 -04:00
Jarrod Johnson
24a3cbc133 Fix non-collective quorum check 2020-08-26 13:54:18 -04:00
Jarrod Johnson
46fc4d626d Fix quorum check in configmanager.py 2020-08-26 13:35:19 -04:00
Jarrod Johnson
b12a5f6ec6 Fix osdeploy local on older system 
Also add short name to principals if user has used FQDN as their name.
 2020-08-26 13:04:12 -04:00
Jarrod Johnson
4348d9160b Provide ability for config file to specify cipher list 
The default set of TLS 1.3 and TLS1.2 restricted ciphers are
generally considered strong today, but for future or special
circumstances, provide ability to override the defaults.
 2020-08-26 09:43:55 -04:00
Jarrod Johnson
e52556affb Fix certificate watch hang 
If no certificate present, then once a day confluent could hang. Fix by
doing a non-blocking
read on the watcher.
 2020-08-24 14:00:47 -04:00
Jarrod Johnson
d6158c9061 Add support for a future SMM to discovery 2020-08-21 16:09:05 -04:00
Jarrod Johnson
5b0389000e Fix handling of password through TLS socket 2020-08-20 08:28:06 -04:00
Jarrod Johnson
b847aacfc0 Add more documentation to deployment.apiarmed 
Since nodedeploy is expected to be used to make
it less annoying, mention the expectation of nodedeploy
in its documentation.
 2020-08-19 10:30:23 -04:00
Jarrod Johnson
1eb4b0f682 Copy all of scripts for genesis init 2020-08-18 17:25:15 -04:00
Jarrod Johnson
97b8beee76 Expound upon crypted.rootpassword documentation 2020-08-18 15:01:59 -04:00
Jarrod Johnson
a126270570 Fix scope of hm attributes in bmcconfig 2020-08-14 16:05:46 -04:00
Jarrod Johnson
dd4d7ded74 Fix syntax error in attributes.py 2020-08-14 15:48:52 -04:00
Jarrod Johnson
997b43045a Make preparations for a configbmc for inband config 2020-08-14 15:29:55 -04:00