1. 11 Nov, 2014 7 commits
    • Kirk Webb's avatar
      More TaintState management updates. · d24df9d2
      Kirk Webb authored
      * Do not "reset" taint states to match partitions after OS load.
      
      Encumber node with any additional taint states found across the
      OSes loaded on a node's partitions (union of states).  Change the
      name of the associated Node object method to better represent the
      functionality.
      
      * Clear all taint states when a node exits "reloading"
      
      When the reload_daemon is finished with a node and ready to release it,
      it will now clear any/all taint states set on the node.  This is the
      only automatic way to have a node's taint states cleared.  Users
      cannot clear node taint states by os_load'ing away all tainted
      partitions after this commit; nodes must travel through reloading
      to get cleared.
      d24df9d2
    • Mike Hibler's avatar
      Fix so it will build under FreeBSD 10.1. · 55f940d9
      Mike Hibler authored
      55f940d9
    • Mike Hibler's avatar
      Account for "out of service" nodes. · 34517320
      Mike Hibler authored
      In our usage info, let's not count nodes in hwdown and hwbroken as
      "in use", as it make our node utilization overly high (well, at least for
      pc600s and pc850s!)
      
      Also, a couple more hacks to try to work around inconsistencies in the
      node_history data. We really just need to fix up the history records!
      34517320
    • Leigh Stoller's avatar
      Turn off SSLv3 · 10b184d9
      Leigh Stoller authored
      10b184d9
    • Leigh Stoller's avatar
      Add gid to project_leases, and allow creation in subgroups. · d859078e
      Leigh Stoller authored
      This is not exposed to users, the main reason for this is so that the name
      space for leases (datasets) is per-group instead of per-project. We need
      this when creating datasets via the geni interface (backend to APT), since
      all leases are created in the holding project. Without a subgroup, we would
      run into name collisions on the backend. It also gives us finer access
      permission control for the same reason.
      
      Note that I yanked out the lease cache from Lease.pm (not worth the
      trouble), and I expanded Lookup to allow for the usual variety of
      possibilities that we allow in other Lookup methods.
      d859078e
    • Leigh Stoller's avatar
      Oops, forgot to load Time::Local. · a9440d74
      Leigh Stoller authored
      a9440d74
    • Leigh Stoller's avatar
      Add gid to project_leases table. · 82d24c28
      Leigh Stoller authored
      82d24c28
  2. 10 Nov, 2014 2 commits
    • Leigh Stoller's avatar
      Fix to previous revision. · 15d451ef
      Leigh Stoller authored
      15d451ef
    • Mike Hibler's avatar
      Fix Linux MFS issue. · 254d0d6d
      Mike Hibler authored
      When locating the root device, if a BSD disk partition fills the entire
      DOS partition, then Linux will not create a separate /dev entry for it.
      In that case, we use the DOS partition device.
      
      Also, a couple of changes to resync with BSD slicefix.
      254d0d6d
  3. 09 Nov, 2014 2 commits
    • Mike Hibler's avatar
      Change of strategy: don't pass realpath-ed path to client side. · 67039354
      Mike Hibler authored
      We still use realpath to validate the path up front, but we pass the
      original (DB) path on to the client-side. Passing the resolved path was
      wrong anyway for clients that write images across NFS, because the path
      the client uses could be different than that computed on the server
      (e.g., /proj/foo vs. /.amd_mnt/ops/proj/foo) due to the way mounts are
      done. Note that the server will again validate the client-provided path,
      so if someone were to mess with a symlink in the path between when
      create_image verifies it and when it gets used, there is still no danger.
      
      This will probably eliminate the need for the AMD hack, but I'll leave
      it just to be safe.
      67039354
    • Mike Hibler's avatar
      Finish the AMD-related hack. · dd8bdbae
      Mike Hibler authored
      dd8bdbae
  4. 08 Nov, 2014 1 commit
  5. 07 Nov, 2014 4 commits
  6. 06 Nov, 2014 2 commits
  7. 05 Nov, 2014 12 commits
  8. 04 Nov, 2014 9 commits
  9. 03 Nov, 2014 1 commit
    • Brecht Vermeulen's avatar
      Fix regexps in 'Attempt to parse the violations into something human readable' · 4b1ee123
      Brecht Vermeulen authored
      e.G. the following assign violations gave just 'Not enough bandwdith' as the 0 always matched.
      Now we match with any number 1-9
      
         BEST SCORE:  50.5 in 0 iters and 0.008631 seconds
        unassigned:  0
        pnode_load:  26
        no_connect:  0
        link_users:  0
        bandwidth:   0
        desires:     0
        vclass:      0
        delay:       0
        trivial mix: 0
        subnodes:    0
        max_types:   0
        endpoints:   0
      4b1ee123