xCAT/confluent
2
0
Fork 0
mirror of https://github.com/xcat2/confluent.git synced 2024-11-22 17:43:14 +00:00
Code Issues Projects Releases Wiki Activity
2,282 Commits 39 Branches 63 Tags 18 MiB
49c00bfbb7
Commit Graph

2282 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jarrod Johnson
49c00bfbb7 Become root to check a password 
Running as non-root had broken PAM support.  Allow setuid so we
can assume root in one specific case.
 2020-02-05 16:06:13 -05:00
Jarrod Johnson
201985dd0e Fix missing argument to rpc_set_user 
Requests were unable to traverse
a collective.
 2020-02-05 14:55:51 -05:00
Jarrod Johnson
1aee19997a Carry errors across msgpack 
Messages that were formerly carried
as pickled exceptions are now sent
as generic strings over msgpack.
 2020-02-04 10:16:48 -05:00
Jarrod Johnson
3bc366bef4 Fix mistake in the cert util 2020-02-03 15:37:20 -05:00
Jarrod Johnson
4c83a1a04e Fix typos 
Previous commit had errors in
quotations.
 2020-02-03 11:13:13 -05:00
Jarrod Johnson
cfae28a869 Add error mesasges to help with non-root confluent 
non-root confluent daemon will have a larger struggle
with permissions, try to help the user navigate that.
 2020-02-03 10:13:26 -05:00
Jarrod Johnson
44e6a72847 Switch to using the defined service 
For now, this makes no difference, but it is poor form,
probably.  Correct by referencing the variable
name.
 2020-02-03 09:57:02 -05:00
Jarrod Johnson
006fdc8280 Merge branch 'master' of github.com:jjohnson42/confluent 2020-02-02 18:19:06 -05:00
Jarrod Johnson
895b5264f6 Fix incorrect pam service 
pam was defaulting to use of 'login', but we want 'confluent' for the service.
 2020-02-02 18:18:39 -05:00
Jarrod Johnson
0b577af1ca Fix ownership of confluent cache 
It needs to be owned by the confluent user.
 2020-01-31 11:48:34 -05:00
Jarrod Johnson
ff0b1bba7f Fix rpm spec file 
There was an ommision and a mistake.
 2020-01-31 10:37:49 -05:00
Jarrod Johnson
0badd9e5b4 Migrate confluent installs to non-root 
This will check for and repair uid 0 owned confluent directories.
 2020-01-31 10:16:33 -05:00
Jarrod Johnson
c02064f0a5 Add missing msgpack dependencies 2020-01-31 10:02:38 -05:00
Jarrod Johnson
c1b82d8163 Protect confluent private data 
This blocks use of private confluent data in commands like
nodelicense, nodefirmware, and nodemedia.
 2020-01-31 10:00:35 -05:00
Jarrod Johnson
0d5fa7a98a Change confluent to run as non-root and harden systemd 
This mitigates a great deal of risk compared to prior behavior.
 2020-01-31 09:52:52 -05:00
Jarrod Johnson
968efe719a Add CAP_NET_BIND_SERVICE to unit file 
This is preparing for running as non-root.

We need this capability to snoop SLP and PXE
 2020-01-31 09:34:13 -05:00
Jarrod Johnson
7a63ca8759 Fix python3 problem with confetty 
Under python3, there is no unicode.
 2020-01-31 08:53:42 -05:00
Jarrod Johnson
a24866c2df Fix exitcode for confetty noderange commands 
The exitcode was not being set for noderange commands
where each node may independently raise errors.

Correct the oversight by catching each subelements errors.
 2020-01-31 08:22:20 -05:00
Jarrod Johnson
c666b11138 Add ability to foreground exec confluent 
This allows easier debug and option for unit file
in systemd to run foreground if it makes sense.
 2020-01-31 08:10:01 -05:00
Jarrod Johnson
22f6198f60 Fix nodebmcreset on bad noderange 
This prevents confusing python stack when
a bad noderange is specified.
 2020-01-30 14:35:58 -05:00
Jarrod Johnson
c99d01dffc Fix indentation of date conversion 
The conversion was not checking each element.
 2020-01-29 17:08:00 -05:00
Jarrod Johnson
8d0028a1de Catch all for serialization errors 
Rather than odd bool error, return something a
bit more precise.
 2020-01-29 15:45:27 -05:00
Jarrod Johnson
bb9c2297c9 Stringify firmware datetime 
With the change to msgpack, datetime objects cannot be serialized.  Apply
tlvdata compliant transform before storing.
 2020-01-29 15:41:13 -05:00
Jarrod Johnson
91fa5bd1eb Enhance nodeconfig treatment of IMM 
This makes the IMM attributes usable, but not intrusive.
 2020-01-29 14:20:56 -05:00
Jarrod Johnson
ac9609c40d Adjust to pyghmi api change 
Due to confusion of mixed settings, pyghmi api changes
to enable the confluent experience to be more
sane.
 2020-01-29 10:56:31 -05:00
Jarrod Johnson
0c4cb49c20 Implement nodeconfig -e 
This provides access to 'extra' settings.
Mainly intended to avoid slowing down nodeconfig
with IMM attributes that most people don't
want anyway.
 2020-01-29 10:15:32 -05:00
Jarrod Johnson
4be4100014 Fix configmanager msgpack 
msgpack method had some regressions.  For one, python2 strings
became bytes on mixed collective, fix by using raw=False on the
receiver.

Additionally, del_nodes tends to use sets, and that's not viable for
msgpack.  Guard against that.
 2020-01-29 09:24:57 -05:00
Jarrod Johnson
9f7c8c69f2 Fix invalid credentials msgpack 
The invalid credentials did not accept an argument like
the rest, fix the inconsistency for msgpack deserialization.
 2020-01-28 15:41:50 -05:00
Jarrod Johnson
c35f7d99f7 Update stripped exceptions to include node 
While the exception had the node name, in some contexts the
exception was processed genericly.
 2020-01-28 10:18:58 -05:00
Jarrod Johnson
445950d02a Roll back library level force of role 
Doing collective and config restore breaks.  The API
will still prevent implicit role assumption.
 2020-01-28 10:05:04 -05:00
Jarrod Johnson
cf72cf2d8c Require role explicitly on user/group creation 
Rather than default to administrator, require
the user to explicitly set the role to administrator.
 2020-01-27 16:12:03 -05:00
Jarrod Johnson
0652a7321b Apply whitelist to rpc functions in configmanager 2020-01-27 15:59:22 -05:00
Jarrod Johnson
4c8ba92856 Change configuration sync to use msgpack 
This removes use of pickle for config sync over network.
 2020-01-27 15:53:29 -05:00
Jarrod Johnson
09582d7597 Move input handling to destination 
It is tricky to serialize a configmanager object, and
probably was making the requests gigantic anyway.

Serialize the parameters to let the target use its local copy instead
of serializing an entire config manager.
 2020-01-27 15:26:54 -05:00
Jarrod Johnson
8a9e9aa7b3 Always use string type in msgpack 
To facilitate py2/py3 consistency, for these
messages just always use the native string.
With this, python 2 strings will be unpacked as
strings by python 3.  This means bytes cannot be
passed, but we will suffer that limitation for now.
 2020-01-24 14:07:34 -05:00
Jarrod Johnson
b766e7b0ee Opt into the msgpack 1.0 behavior 
This fixes the dispatch to actually work.
 2020-01-24 11:39:44 -05:00
Jarrod Johnson
92699e47f2 Merge tag '2.4.1' 
2.4 bugfix release
 2020-01-24 09:59:29 -05:00
Jarrod Johnson
2aa9910d83 Fix XCC discovery issues 
A couple of issues could occur during discover that should be
stepped over.
 2020-01-23 08:45:43 -05:00
Jarrod Johnson
18b6398c64 Fix XCC discovery issues 
A couple of issues could occur during discover that should be
stepped over.
 2020-01-23 08:44:17 -05:00
Jarrod Johnson
47b68e4258 Fix dispatch of redfish and tsmsol 
redfish and tsmsol was not properly marked as
needing dispatch.
 2020-01-22 15:04:43 -05:00
Jarrod Johnson
79b6d099ab Fix attribute sort with python 3 
For attributes without a sortid, sort was failing with python3
 2020-01-22 14:24:58 -05:00
Jarrod Johnson
604ebcde3b Merge branch 'master' of github.com:jjohnson42/confluent 2020-01-22 14:24:21 -05:00
Jarrod Johnson
b4b733a573 Fix attribute sort with python 3 
For attributes without a sortid, sort was failing with python3
 2020-01-22 14:24:10 -05:00
Jarrod Johnson
3bf083deb3 Stage 3 of msgpack for dispatch 
This may complete the dispatch portion of the msgpack migration.
 2020-01-21 14:15:14 -05:00
Jarrod Johnson
9d770632ce Merge branch 'master' of github.com:jjohnson42/confluent 2020-01-21 13:44:04 -05:00
Jarrod Johnson
79afd174c9 Add serialization to ConfluentExceptions 
In the same manner that messages
are handled, handle non-messages
content.
 2020-01-21 11:28:08 -05:00
Jarrod Johnson
13a0bf4fbe Draft for message serialization 
This adds msgpack based serialization to messages.

This would be used to superesed pickle in core.
 2020-01-16 16:42:32 -05:00
Jarrod Johnson
f1e1d9804a Use python3 for Debian and Ubuntu except for wheezy 2020-01-14 09:52:16 -05:00
Jarrod Johnson
546296ce71 Have the get_webclient always return two elements 
Some scenario existed where the function could return
None and this could break code expectations that it
always returned a tuple and the first value needs
to be checked for None.
 2020-01-08 10:17:06 -05:00
Jarrod Johnson
954b2dd15c Fix minor formatting issues in source 2020-01-07 09:38:40 -05:00