1. 10 Jan, 2014 1 commit
  2. 08 Jan, 2014 7 commits
  3. 24 Sep, 2012 1 commit
    • Eric Eide's avatar
      Replace license symbols with {{{ }}}-enclosed license blocks. · 6df609a9
      Eric Eide authored
      This commit is intended to makes the license status of Emulab and
      ProtoGENI source files more clear.  It replaces license symbols like
      "EMULAB-COPYRIGHT" and "GENIPUBLIC-COPYRIGHT" with {{{ }}}-delimited
      blocks that contain actual license statements.
      
      This change was driven by the fact that today, most people acquire and
      track Emulab and ProtoGENI sources via git.
      
      Before the Emulab source code was kept in git, the Flux Research Group
      at the University of Utah would roll distributions by making tar
      files.  As part of that process, the Flux Group would replace the
      license symbols in the source files with actual license statements.
      
      When the Flux Group moved to git, people outside of the group started
      to see the source files with the "unexpanded" symbols.  This meant
      that people acquired source files without actual license statements in
      them.  All the relevant files had Utah *copyright* statements in them,
      but without the expanded *license* statements, the licensing status of
      the source files was unclear.
      
      This commit is intended to clear up that confusion.
      
      Most Utah-copyrighted files in the Emulab source tree are distributed
      under the terms of the Affero GNU General Public License, version 3
      (AGPLv3).
      
      Most Utah-copyrighted files related to ProtoGENI are distributed under
      the terms of the GENI Public License, which is a BSD-like open-source
      license.
      
      Some Utah-copyrighted files in the Emulab source tree are distributed
      under the terms of the GNU Lesser General Public License, version 2.1
      (LGPL).
      6df609a9
  4. 11 Jul, 2012 1 commit
    • Leigh B Stoller's avatar
      Cleanup in the web interface to prevent XSS attacks. · 6cf701f9
      Leigh B Stoller authored
      We had a couple of different problems actually.
      
      * We allow users to insert html into many DB fields (say, a project or
        experiment description).
      
      * We did not sanitize that output when displaying back.
      
      * We did not sanitize initial page arguments that were reflected in the
        output (say, in a form).
      
      Since no one has the time to analyze every line of code, I took a couple of
      shortcuts. The first is that I changed the regex table to not allow any <>
      chars to go from the user into the DB. Brutal, but in fact there are only a
      couple of places where a user legitimately needs them. For example, a
      startup command that includes redirection. I handle those as special
      cases. As more come up, we can fix them.
      
      I did a quick pass through all of the forms, and made sure that we run
      htmlspecialchars on everything including initial form args. This was not
      too bad cause of the way all of the forms are structured, with a
      "formfields" array.
      
      I also removed a bunch of obsolete code and added an update script to
      actually remove them from the www directory.
      
      Lastly, I purged some XMLRPC code I did a long time ago in the Begin
      Experiment path. Less complexity, easier to grok and fix.
      
      	modified:   sql/database-fill.sql
      	modified:   sql/dbfill-update.sql
      6cf701f9
  5. 17 Feb, 2012 1 commit
  6. 07 Mar, 2011 1 commit
  7. 01 Mar, 2011 1 commit
  8. 15 Dec, 2010 1 commit
  9. 08 May, 2009 1 commit
  10. 05 Aug, 2008 1 commit
  11. 22 Jul, 2008 2 commits
  12. 26 Jun, 2008 1 commit
  13. 18 Jul, 2007 1 commit
  14. 15 Mar, 2007 1 commit
  15. 14 Mar, 2007 2 commits
  16. 01 Dec, 2006 1 commit
  17. 30 Jun, 2006 1 commit
  18. 13 Apr, 2006 1 commit
  19. 07 Apr, 2006 1 commit
  20. 08 Mar, 2006 1 commit
    • Timothy Stack's avatar
      · 74bc1920
      Timothy Stack authored
      Convert to a CSS layout, hopefully it should make some workbenchy
      things easier.
      
      	* www/beginexp_form.php3: Widen the nscheck window a bit so it
      	looks nice.
      
      	* www/common-style.css: Clean out some dead definitions.
      
      	* www/GNUmakefile.in, www/csshover.htc: Some magic that makes IE
      	support the :hover CSS pseudo-class.
      
      	* www/currentusage.php3: Tweak the header on the usage table.
      
      	* www/linktest.php3: Drop an extraneous </div>.
      
      	* www/menu.php3, www/tutorial/mobilewireless.php3: Use CSS and
      	semantic markup instead of tables.
      
      	* www/nscheck.php3: Hide some of the extra stuff.
      
      	* www/style-doc.css: Some styling specific to documentation.
      
      	* www/style.css, www/style-nonmain.css: Update for changes to
      	menu.php3 and try to clean out some old stuff.
      74bc1920
  21. 22 Feb, 2006 1 commit
  22. 15 Dec, 2005 1 commit
  23. 30 Nov, 2005 1 commit
  24. 28 Nov, 2005 1 commit
    • Timothy Stack's avatar
      · 19dbd0fd
      Timothy Stack authored
      Make the netlab client applet available to locals.
      
      	* configure, configure.in: Add xmlrpcpipe.php3.
      
      	* xmlrpc/emulabserver.py.in: Add missing virtual_tables.  Add
      	getareas call to get the list of robot areas.  Add node.getlist
      	and node.typeinfo methods for getting information about the nodes.
      	Add a "nic" argument to node.available to get the count of
      	wireless nodes.  Add "exclude" argument to
      	experiment.virtual_topology so we don't have to download the
      	massive route table, also delete the 'pid'/'eid' fields for the
      	same reason.  Don't return string output of virtual_topology, it's
      	huge.  Return some more info in experiment.getlist().
      
      	* www/GNUmakefile.in: Add xmlrpcpipe.php3.
      
      	* www/beginexp_form.php3, www/modifyexp.php3: Add links to the
      	client gui.
      
      	* www/netlab-client.jar: The client binary.
      19dbd0fd
  25. 01 Nov, 2005 1 commit
    • Leigh B. Stoller's avatar
      Hacky little script (htmlinstall) that runs each html file through a · 780bcd01
      Leigh B. Stoller authored
      perl filter (at installation time) to replace hardwired Utah specific
      tokens with configured values. Currently:
      
          s/www\.emulab\.net/www.@OURDOMAIN@/g;
          s/users\.emulab\.net/@USERNODE@/g;
          s/ops\.emulab\.net/@USERNODE@/g;
          s/boss\.emulab\.net/@BOSSNODE@/g;
          s/fs\.emulab\.net/@FSNODE@/g;
          s/(\s+[-\w]+)\.emulab\.net/$1.@OURDOMAIN@/g;
          s/testbed-ops\@emulab\.net/@TBOPSEMAIL@/g;
          if (! $TBMAINSITE) {
      	s/testbed-ops\@flux\.utah\.edu/@TBOPSEMAIL@/g;
      	s/\@flux\.utah\.edu/\@@OURDOMAIN@/g;
          }
      
      Seems to catch most everything.
      780bcd01
  26. 26 Oct, 2005 1 commit
    • Timothy Stack's avatar
      · df1f4479
      Timothy Stack authored
      Some ajax stuff:
      
      	www/JSON.php, www/json.js: JavaScript Object Notation libraries,
      	sourced from - http://www.crockford.com/JSON/index.html .
      
      	www/GNUmakefile.in: Install javascript sources.
      
      	www/Sajax.php: Load the JSON libraries into php and javascript and
      	encode/decode results from the php callback (arguments to the
      	callback aren't done at the moment).
      df1f4479
  27. 20 Sep, 2005 1 commit
    • Leigh B. Stoller's avatar
      Checkpoint Chat Support stuff; mostly working but still needs work. · 90cdfb60
      Leigh B. Stoller authored
      Ready for local people to play with.
      
      The current implementation is that we munge the mysql DB on ops directly,
      underneath jabberd. We add/del users from the authreg table, and set up
      buddy lists in the roster-items and roster-groups tables. modgroups will
      invoke the modjabberbuddies whenever a user is added or removed from a
      group, although currently I am building buddy lists for just the top level
      projects.
      
      The "My IM" link in the collaboration menu will tell the user their
      jabber ID on the Emulab chat server (jabber.emulab.net) and also give
      them their plain text password to plug into their chat client.
      
      I also installed a java applet (Jeti) that is a simple chat client that
      I found off the jabberware page. Like all applets, it exhibits a degree
      of flakiness, but I really do not expect too many people to use it.
      90cdfb60
  28. 08 Sep, 2005 1 commit
  29. 29 Jun, 2005 1 commit
  30. 28 Jun, 2005 1 commit
  31. 11 May, 2005 1 commit
  32. 20 Feb, 2005 1 commit