1. 17 Feb, 2016 9 commits
  2. 16 Feb, 2016 1 commit
    • David Johnson's avatar
      Add Liberty support and configurable Keystone API version support. · 0dd7c424
      David Johnson authored
      Add Liberty support.
      Add keystone v3 support.  Now you can choose which version of keystone
      to run... all combinations tested exception Juno with v3.
      Make node type and link speed configurable.
      Make token and session timeouts much longer by default (so people don't
      get logged out so quickly), but also configurable.
      Keystone is now served by WSGI through Apache on Kilo and Liberty.
      Memcached keystone token caching is disabled for now; it causes
      intermittent problems; so using SQL for now.
      Add localhost to /etc/hosts file.  This doesn't cause problems anymore,
      if it ever did.
      We now use the `openstack' CLI command for >= Kilo, instead of the
      per-service client CLI tools.
      Stick with ovs agent even in Liberty -- even though the default is now
      linuxbridge, it seems.
      In general, get rid of nearly all the rest of the cat <<EOF ... EOF
      stuff and replace it with crudini --set/--del.  A touch slower, but much
      Also in general, improve the Kilo support so that it more closely
      matches the docs.
  3. 01 Feb, 2016 2 commits
  4. 23 Dec, 2015 2 commits
    • David Johnson's avatar
      Support dynamic addition/deletion of compute nodes. · 1dc78db1
      David Johnson authored
      Also, adds a geni-lib script that generates an rspec instead of printing
      it (although print still works at portal) and generates input for
      CM::AddNodes() when requested.  This generator is stateful; it tries
      to avoid generating new nodes with previously-used IPs or client_ids;
      thus it is a separate object.  It is designed so that it can be imported
      into a script, and the importing script can look for special
      DYNSLICE_GENERATOR variables to use its rspec foo to create a slice and
      add nodes in some semantic way.
    • David Johnson's avatar
  5. 21 Dec, 2015 3 commits
  6. 08 Dec, 2015 1 commit
  7. 04 Dec, 2015 1 commit
  8. 02 Dec, 2015 2 commits
    • David Johnson's avatar
    • David Johnson's avatar
      Make package installation optional, and separate install/upgrade. · b2634d01
      David Johnson authored
      Quit trying to apt-get packages if they're installed, unless the
      user selects the new DO_APT_UPGRADE option.  Always install was nice
      in the beginning, but it is no longer the best use case, and it can
      cause uncertainty when failures happen (i.e., if new versions of
      packages get installed that the scripts can't handle).  So now there
      are three apt options in the scripts and in the geni-lib script:
      DO_APT_UPDATE -- updates the apt cache (often hard to do pkg
        install/upgrade if the cache is out of date); defaults to 1
      DO_APT_INSTALL -- if this is set 0, we don't install *anything*
        other than critical deps (think python-m2crypto); defaults to 1
      DO_APT_UPGRADE -- if this is set 1, we always run apt-get install
        to either install and/or upgrade OpenStack packages and deps.
        The big change is that this now defaults to 0 -- so packages are
        not upgraded from their current versions if they exist.
  9. 24 Nov, 2015 2 commits
  10. 05 Nov, 2015 3 commits
  11. 26 Oct, 2015 2 commits
  12. 23 Oct, 2015 1 commit
  13. 21 Oct, 2015 1 commit
  14. 14 Oct, 2015 2 commits
  15. 06 Oct, 2015 4 commits
    • David Johnson's avatar
      A nasty hack to get pubkeys into Openstack "portably". · 6def427b
      David Johnson authored
      This is really, really ugly.  So, keystone and nova don't offer us a way to
      upload keypairs on behalf of another user.  Recall, we're using the adminapi
      account to do all this setup, because we don't know the admin password.  So,
      the below code adds all the keys as 'adminapi', then we dump the sql, do some
      sed magic on it to get rid of the primary key and change the user_id to the
      real admin user_id, then we insert those rows, then we cleanup the lint.  By
      doing it this way, we eliminate our dependency on the SQL format and column
      names and semantics.  We make two assumptions: 1) that there is only one field
      that has integer values, and 2) the only field that is an exception to #1 is
      called 'deleted' and we just set those all to 0 after we jack the whacked sql
      in.  Ugh, it's worse than I hoped, but whatever.
      This is one of the sickest one-liners I've ever come up with, but it
      works like a charm!
    • David Johnson's avatar
      Patch Neutron openvswitch plugin to allow anti-ARP spoof rules to persist. · 6b8dc71e
      David Johnson authored
      SDN controllers think they're king, right?  Why should the admin be able
      to insert custom rules?  Well, this is why.  Oh wait, it's just that I
      don't have a northbound interface or whatever.  Let me just implement
      one of those for this plugin instead!
    • David Johnson's avatar
      Whoops, was restarting a nonexistent ovs service. · 7ba7cf3c
      David Johnson authored
      It only mattered if the package install failed to start the service.
      It seems like that was actually a possibility, although nondeterministic
      from my perspective...
    • David Johnson's avatar
  16. 16 Sep, 2015 2 commits
  17. 03 Sep, 2015 2 commits