2
0
mirror of https://github.com/xcat2/confluent.git synced 2024-11-26 11:30:23 +00:00
Commit Graph

4500 Commits

Author SHA1 Message Date
Jarrod Johnson
4486fb5f81
Merge pull request #86 from erderial/patch-4
changed subprocess .run to Popen
2022-10-13 10:56:59 -04:00
Jarrod Johnson
8de7402b56 Add ability to get booturl redirect
In some environments, there's a desire to manually manage DHCP configuration.
In such a case, provide a url
that can be given to the dhcp server
to allow confluent to control the profile
without updating such a DHCP service.

With this change, a node can be told to boot:
http://confluentserver/confluent-api/booturl/by-node/n123/boot.ipxe

To be redirected to the currently applicable os profile.
2022-10-13 10:54:11 -04:00
erderial
dc62fc3f51
changed subprocess .run to Popen
changed subprocess .run to Popen to open separate subprocesses for simultaneous run of console windows.
2022-10-12 22:35:05 +03:00
Jarrod Johnson
23ec46bb8b Add vlanid to the vmware deployment support 2022-10-12 13:08:57 -04:00
Jarrod Johnson
145be7ce31 Correct omission in private key access message during diskless boot 2022-10-07 16:47:48 -04:00
Jarrod Johnson
d5d0852890 Tighten redfish check timeout
The default timeout is overkill in the nodediscover scenario.
Notably, we can receive replies from unreachable IP addresses,
and those will extend rescan to the full timeout.  The devices should
comfortably reply within 3 seconds, making scans exit in
a timely fashion.
2022-10-07 09:22:37 -04:00
Jarrod Johnson
4fed609050 Avoid enumerating members of a bond
Various parts of confluent that go to try to use
all the interfaces will now skip bond members.

One example problem is that joining the SSDP multicast
group for SSDP would cause the kernel to IGMPv6 out
on bond members as well as the bond itself.  This change
ensures that the bond interface is only used and never
bypassed.
2022-10-07 08:52:02 -04:00
Jarrod Johnson
a77f211b8e Fix json restore of users and groups
Defaults were erroneously used
do to oversight and mistake in teh json restore code.
2022-10-06 09:23:43 -04:00
Jarrod Johnson
3c29a5aa7f Enable non-admin users for web gui 2022-10-06 08:49:00 -04:00
Jarrod Johnson
6eb4bf28e5 Another iteration to try to have IP adaptive syncfiles
It is likely that a client connects from fe80::, which
is explicitly omitted from ssh principals.

This time, have the client provide all currently set IP addresses
and the server will make a determination.

There remains the possibility it misconfigures a nic and tries to use that,
inducing failure.  One strategy would be to filter the addresses and
only provide from the 'current' interface.  Another is to just take
the hit as the node is likely going to suffer a lot from such a
misconfiguration anyway.
2022-10-05 12:23:47 -04:00
Jarrod Johnson
4cb222068f Sync up EL7 syncfileclient 2022-10-05 11:53:59 -04:00
Jarrod Johnson
c612129d64 Have syncfiles attempt to use client ip, if feasible
When a node installs, it may not have it's node mapped address up,
or may not have one at all. Try to use the ip if it would be in the
same set that produced it's ssh certificate.

There remains a gap if a system has no static addressing *and* doesn't
map nodename to IP, but we have an impasse as the situation is too fuzzy
to grant a prinicpal in an SSH cert, and without that we can't securely
attempt rsync.  For now, this scenario would still fail and I will
just hope that doesn't come up.
2022-10-05 08:31:37 -04:00
Jarrod Johnson
13ba95bb99 Give up on waiting for disks
Some profiles may have all disk support suppressed through blacklist until %pre comes
along to fix it.  This avoids /dev/disk ever existing.

Wait up until 10 seconds before giving up. This gives disk subsystem a fair chance to
speed up and avoid a wait, with a fallback worst case of 10 seconds
2022-10-04 10:39:02 -04:00
Jarrod Johnson
75484db014 Fix macok incorrect value on finding the mac 2022-10-03 10:33:21 -04:00
Jarrod Johnson
0adfec0c44 Bump genesis version 2022-09-30 15:04:25 -04:00
Jarrod Johnson
4f67ed661d Remove curl from genesis
It is redundant with python function, and drags
sasl along as a significant dependency.
2022-09-30 15:02:54 -04:00
Jarrod Johnson
763b157802 Fix syntax error 2022-09-30 12:36:12 -04:00
Jarrod Johnson
6e803e9fca Add insecure protocol check 2022-09-30 12:22:39 -04:00
Jarrod Johnson
9ecd3e3ac7 Add API check
Particularly SELinux is a frequently missed configuration
facet, alert when the selinux is blocking.
2022-09-30 12:17:31 -04:00
Jarrod Johnson
ee3aef0a4c Mark COPYRIGHT as legal in rpm 2022-09-30 11:02:55 -04:00
Jarrod Johnson
b7dfe20286 Add legal artifacts to confluent_server 2022-09-30 10:43:18 -04:00
Jarrod Johnson
28f4571c8e Go for xCAT-neutral terminology 2022-09-29 16:09:46 -04:00
Jarrod Johnson
c647dec069 Add message on successful node attribute run 2022-09-29 15:45:07 -04:00
Jarrod Johnson
903de26dd8 Add node attribute checks to selfcheck 2022-09-29 15:27:12 -04:00
Jarrod Johnson
76491785db
Merge pull request #84 from erderial/patch-2
Adding wcons functionality for nodeconsole
2022-09-29 13:17:04 -04:00
Jarrod Johnson
b7a424f4cc
Merge pull request #85 from erderial/patch-3
Added -w flag for nodeconsole
2022-09-29 13:16:30 -04:00
erderial
e180ec0bc8
removed null from the flow 2022-09-29 20:15:55 +03:00
Jarrod Johnson
fcf342165c Fix apiclient detection of default interface
It was failing to record the default interface in its checks.
2022-09-29 13:15:37 -04:00
erderial
d88207a468
Added -w flag for nodeconsole
Added -w flag for nodeconsole command, for xterm for now.
2022-09-29 19:24:57 +03:00
erderial
e09c594ffb
Adding wcons functionality for nodeconsole
Adding wcons functionality for nodeconsole for xterm first.
2022-09-29 18:58:06 +03:00
Jarrod Johnson
cf000d6872 Add node name resolution check
A common scenario for closed networks
is a misconfigured DNS situation.

Detect and report, as this can wreak havoc on a confluent instance.
2022-09-29 09:57:43 -04:00
Jarrod Johnson
04ee7a8c31 Add '-l' to nodersync command 2022-09-29 08:05:02 -04:00
Jarrod Johnson
5a62307d1e Restore config by name
The change to allow CIDR syntax
broke for configurations that use name for
bmc 'address'.

Fix by letting getaddrinfo have a chance to process the ip before
trying to pton it.
2022-09-27 17:05:13 -04:00
Jarrod Johnson
e5360b3b2f Have suse give up after a minute
If a network problem prevents the deployment nic from working,
give up eventually
2022-09-27 08:33:00 -04:00
Jarrod Johnson
484dbd9f74 Fix default interface detection 2022-09-23 16:10:55 -04:00
Jarrod Johnson
52626c56a8 Fix issues with the license restructure 2022-09-22 09:51:02 -04:00
Jarrod Johnson
885354f6b7 Rework license storage structure 2022-09-22 09:09:46 -04:00
Jarrod Johnson
0c08d8f6d3 Provide helpful error on bad user/password in delta pdu 2022-09-21 16:19:13 -04:00
Jarrod Johnson
25c66e163c Some notes on TPM recovery 2022-09-21 10:50:05 -04:00
Jarrod Johnson
ba7832eb40 Fix restoring blocking on exit
When confetty/nodeconsole exits, correctly
clear NONBLOCK flag is an idempotent way.
2022-09-21 09:48:39 -04:00
Jarrod Johnson
440fcf2663 Further tweak el8 ident image support 2022-09-14 12:18:11 -04:00
Jarrod Johnson
0286b2e776 Further fixes to identity image in el8 2022-09-14 11:57:02 -04:00
Jarrod Johnson
aa2a8e2d5a Adjust ported coreos ident image support to el8 install environment 2022-09-14 11:18:01 -04:00
Jarrod Johnson
65e97073e2 Add identity image support to EL8 scripted install profiles 2022-09-14 11:00:04 -04:00
Jarrod Johnson
5a935d99fc Have SMM devices register cleanly
In remote discovery registration, the
SMM path was not fully implemented
2022-09-13 13:29:42 -04:00
Jarrod Johnson
785d7d40fa Add COPYRIGHT notice 2022-09-09 12:50:38 -04:00
Jarrod Johnson
91f4ef9747 Attempt to fill in more missing metadata 2022-09-09 12:26:38 -04:00
Jarrod Johnson
9025918609 Fix missing information in packaging metadata 2022-09-09 12:10:32 -04:00
Jarrod Johnson
7cbd105ae3 Workaround TSM issue with redfish configuration 2022-09-09 12:04:38 -04:00
Jarrod Johnson
2bc2736da4 Fix neighutil invocation of ipn_is_local 2022-09-08 16:07:04 -04:00