xCAT/confluent
2
0
Fork 0
mirror of https://github.com/xcat2/confluent.git synced 2024-11-22 01:22:00 +00:00
Code Issues Projects Releases Wiki Activity
3,135 Commits 39 Branches 63 Tags 18 MiB
b4f9bb78ae
Commit Graph

3135 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jarrod Johnson
b4f9bb78ae Address irrelavent call to yaml.load 2021-01-21 17:48:56 -05:00
Jarrod Johnson
c8e1efecdb Mitigate XML parse risks 
The intended xml never has !entity tags and
thus we can reject any such XML outright and
avoid billion laughs and similar abuses.
 2021-01-21 17:46:21 -05:00
Jarrod Johnson
22dc852277 Remove now redundent errors 
printerror now searches for deeper errors,
no longer need to call it as much.
 2021-01-21 16:38:35 -05:00
Jarrod Johnson
784ac5ecba Fix gitignore to track ronn files 2021-01-21 11:52:22 -05:00
Jarrod Johnson
66c9777b3c Add man page for stats command 2021-01-21 11:36:08 -05:00
Jarrod Johnson
dba4c40f0e Fix collective join with empty config 
Collective join without a key set would fail on
first try.
 2021-01-21 11:19:13 -05:00
Jarrod Johnson
6997508a0c Fallback to forced utf8 on unicodeerror 
If LC_ALL is set to C, then unicode can be a problem.
 2021-01-21 08:41:35 -05:00
Jarrod Johnson
203253e05f Fix mispelling of exception name in confetty 2021-01-20 11:19:24 -05:00
Jarrod Johnson
edc4804146 Discover larger SMMv2 based chassis 
SMMv2 can support 12 servers, so increase the limit.
 2021-01-20 09:08:56 -05:00
Jarrod Johnson
7cfdf11bf2 Fix collective name return 
It inadvertently would return None when
rereading from file.
 2021-01-19 17:34:28 -05:00
Jarrod Johnson
a3bd21d605 Cleanup confetty/nodeconsole exit 
Unexpected exit from nodeconsole/confetty is now
handled better for feedback and terminal usefulness
 2021-01-19 16:24:36 -05:00
Jarrod Johnson
6d8474a16a Fix node errors being swalled by print_error 
Node specific errors were not processed, correct
that oversight.
 2021-01-19 12:16:22 -05:00
Jarrod Johnson
5736c41daa Add more data to discovery 
Some applications may
want to source more information
from systems to help
identify things, particularly with
partially preconfigured systems.
 2021-01-15 10:34:43 -05:00
Jarrod Johnson
a5c4b64c60 Have Genesis better work with BMC install 
In a BMC install, the certificate may fail and we may
have ability to port forward 3389 but not 22.

Support normal and enhanced certificate behavior
when possible, but degrade to cert-less ssh and
also port 3389
 2021-01-15 08:25:12 -05:00
Jarrod Johnson
f7a940227d Move sixel under opportunistic import 
Do not require sixel
to run stats.
 2021-01-14 15:49:30 -05:00
Jarrod Johnson
ebf50359f0 Fix file descriptor leak by web forwarder 
It failed to close the two sockets when a socket was
done.
 2021-01-13 16:50:17 -05:00
Jarrod Johnson
5160023cc4 Update nodedeploy error message 
We can't tell which argument was omitted,
so warn that both are needed.
 2021-01-13 16:43:41 -05:00
Jarrod Johnson
a738b761b4 Fix XCC discovery with Whitley changes 2021-01-12 11:47:02 -05:00
Jarrod Johnson
d27ef81e32 Fix PXE handling of candidate managers 2021-01-11 13:33:26 -05:00
Jarrod Johnson
f5344fabaa Correct typo in new attribute text 2021-01-11 13:13:03 -05:00
Jarrod Johnson
fa1c2f5c1e Only offer deployment if a candidate manager 
If candidate managers are defined, and this node is not in
that set, ignore PXE and SSDP requests to opt out of
deployment.
 2021-01-08 16:32:41 -05:00
Jarrod Johnson
25c3f40559 Cache manager name 
Since the get_myname() may be called much much more
frequently now that it is in the deployment flow,
have it cache results to save a lot of disk I/O
 2021-01-08 16:30:51 -05:00
Jarrod Johnson
5812a0eef6 Have a rebalance shortly after becoming leader 
This will handle startup and takeover when the current leader dies.
 2021-01-08 16:15:11 -05:00
Jarrod Johnson
086ce9823b First phase of collective manager candidate implementation 
This implements recovery on loss of collective member to
the least loaded candidates for the node.
 2021-01-08 16:00:24 -05:00
Jarrod Johnson
2d6bdffebe Finalize the ssh.trustnodes facility 
This is the confluent approach to handling the same
problem that xCAT SSH Zones do.
 2021-01-08 14:05:37 -05:00
Jarrod Johnson
efdbeeae0d Fix SNMPv2 on non-cisco switches 
The cisco change was causing problems elsewhere.
 2021-01-08 09:16:40 -05:00
Jarrod Johnson
a2a1142f18 Draft implementation of ssh trust segmentation 
Have equiv optionally be restricted to a subset of nodes
so that node to node ssh may be enabled within subsets
without enabling across the board.

This is akin to 'zones' in xCAT, albeit a bit more flexible
and covering both users and administrative access.
 2021-01-06 11:52:43 -05:00
Jarrod Johnson
8c89deaa95 Further defer use of deploycfg as normal 
In ESXi flow, it is highly likely that IPv4 cannot
be ready yet, delay a bit more.
 2021-01-05 15:32:46 -05:00
Jarrod Johnson
1ec5231ebe Do not reply to mismatched IP in confluent search 
If an OS queries for confluent, but will not have a viable address,
avoid replying to let more usable network paths prevail.

For example, one OS was coming up with 169.254 with no dhcp server,
and being told it could do well to talk to 172.29, which obviously
would not work.
 2021-01-05 15:17:23 -05:00
Jarrod Johnson
674e2887f3 Fix ESXi deployment without working DHCP 
apiclient was instructing itself to use IPv4 prematurely. Change
the dcuiweasel hook to delay that change until after all data has been
fetched.
 2021-01-05 11:55:30 -05:00
Jarrod Johnson
4768bc257a Handle API change for setting user name 
The web api now requires the word Administrator instead of
the number 4.
 2020-12-15 16:44:55 -05:00
Jarrod Johnson
7610f9b963 Clean out .gitignore files 
Don't leave them laying around installed package.
 2020-12-15 15:53:41 -05:00
Jarrod Johnson
b29e7bc94a Add new requirement in newer ESXi versions 
New ESXi versions use a new efi executable during
boot.
 2020-12-15 14:39:15 -05:00
Jarrod Johnson
04d63a269d Fix detection of CentOS 8.3 
They changed their package name to be consistent with
their focal shift.
 2020-12-15 12:59:48 -05:00
Jarrod Johnson
e1bf22911b Try to have example directories obvious 
git can't do empty directories, try a .gitignore
to have directories appear in the profiles
 2020-12-15 12:52:57 -05:00
Jarrod Johnson
d6642f1bde Fix omitted directory for firstboot 
firstboot being in /opt requires a mkdir
 2020-12-15 12:51:16 -05:00
Jarrod Johnson
36f027ac71 Implement support for Cisco switches 
Cisco bridge mib requires to be instanced by vlan.
Detect through proprietary mibs and use it to
guide bridge mib walking.
 2020-12-15 10:46:14 -05:00
Jarrod Johnson
c025f4d2fc Fix firstboot.sh with selinux enabled 2020-12-14 15:06:04 -05:00
Jarrod Johnson
1238babe60 Notate future development requirements 2020-12-14 13:09:02 -05:00
Jarrod Johnson
f9a82bde00 Fix arch detection in CentOS stream 2020-12-14 10:42:52 -05:00
Jarrod Johnson
48c868e935 Detect architecture for CentOS stream 
CentOS stream changed the release rpm to be noarch.
 2020-12-14 10:23:05 -05:00
Jarrod Johnson
caf9115439 Fix CentOS stream support 2020-12-14 10:04:31 -05:00
Jarrod Johnson
8b11acbcf2 Recognize CentOS Stream 
Allow installation of CentOS stream as a profile.
 2020-12-14 09:47:56 -05:00
Jarrod Johnson
db0f91c160 Comment to show how to opt out of UEK 
For users that use the distribution with UEK, but do
not want UEK at all.
 2020-12-14 08:33:58 -05:00
Jarrod Johnson
cbb46dec3a Allow firstboot to run with root access 
Being it /etc is unusual, and restorecon treats it
as such. Manually use chcon to explicitly allow
it in /etc/
 2020-12-12 14:57:02 -05:00
Jarrod Johnson
0afa4c217c Add directory based post/firstboot capability 
el8 profiles gain post.d/firstboot.d capability
 2020-12-11 16:29:12 -05:00
Jarrod Johnson
47f04c8462 Provide guidance if the user tries to use defaults 
Default username/password is no longer a
viable long term credentiol for XCC, have user
clearly be told to change and that they
shouldn't have to worry about the default
user and password.
 2020-12-11 10:37:00 -05:00
Jarrod Johnson
5b0e23b8d4 Provide better feedback on XCC security lockouts 
Rather than 'NoneType' error about grab_json_response,
provide actual recognizable feedback
 2020-12-11 10:21:21 -05:00
Jarrod Johnson
14d9284cc5 Fix older Oracle Linux 7 
Older OL has another release file thtat
was tripping the fingerprinting code.
 2020-12-10 13:48:51 -05:00
Jarrod Johnson
cd251fa5d6 Add support for OL7 and older other EL7 flavors 
Older EL7 didn't have platform-python in installer,
change to fallback to old /usr/bin/python if
needed.
 2020-12-10 10:54:30 -05:00