1. 16 Sep, 2015 2 commits
  2. 03 Sep, 2015 3 commits
  3. 10 Aug, 2015 2 commits
  4. 07 Aug, 2015 3 commits
  5. 03 Aug, 2015 3 commits
  6. 31 Jul, 2015 1 commit
    • David Johnson's avatar
      Serial console support. · f905c8e7
      David Johnson authored
      Openstack doesn't yet have 1) serial console client builtin to
      dashboard, nor 2) serial console log + r/w serial console access.
      
      So right now, you have to choose if you want to enable r/w console
      access via CLI client, or if you want to be able to view serial logs in
      the dashboard web UI; default is the latter (logs).
      
      If you enable r/w consoles, we download a simple websocket console
      client, setup a little frontend script, so users can type
      
        $ /root/setup/novaconsole.sh <instancename>
      
      and get to the console.  Escape is ~.  In addition to the console CLI
      tool, we have to grab the latest version of the python websocket
      library, cause the one in Ubuntu 15.04 is horribly out of date and
      doesn't seem to support binary/base64 websockets, which the console CLI
      tool requires (as does the server).
      f905c8e7
  7. 30 Jul, 2015 4 commits
    • David Johnson's avatar
      86bb9e67
    • David Johnson's avatar
      Make sure openstack special IPs don't stomp on our flat lan phys IPs. · c2676e3a
      David Johnson authored
      For our flat lan case, we run lans directly over the top of real (or
      emulab vlan) networks.  So we extend those emulab IP networks into
      the openstack flat network associated with each emulab network.  Well,
      openstack assumes it controls the subnet and can just allocate special
      addresses anywhere -- like for the local dhcp agent IP, or a router
      interface -- it doesn't respect the allocation_pool value we give the
      network (so that must just be for compute nodes).
      
      Further, there's no way to set these special IPs when creating networks,
      subnets, and routers, so we retroactively find those ports and change
      their IP addrs to something that won't stomp on emulab IPs, nor on the
      openstack allocation_pool.
      
      This seems to work great, except that packets outbound from an openstack
      instance don't get SNAT'd so they appear they came from the real
      external world address.  Inbound packets make it all the way, so at
      least DNAT is working.
      c2676e3a
    • David Johnson's avatar
    • David Johnson's avatar
      Use the right vnc proxy URL for multi-site. · 37dc2bfa
      David Johnson authored
      Right now, the vnc proxy sits on the controller only.
      I suppose eventually we could try to run a proxy on each
      machine directly, if that's possible... but for now keep
      it simple (and high-latency ;)).
      37dc2bfa
  8. 28 Jul, 2015 4 commits
  9. 23 Jul, 2015 1 commit
  10. 16 Jul, 2015 1 commit
    • David Johnson's avatar
      Lots of new features, especially drastically improved network config. · a9265ea7
      David Johnson authored
      Setup several kinds of networks: tunnels, flat networks, flat networks
      multiplexed via vlans over physical networks (where openstack doesn't
      manage the vlan ids), and real vlan networks (where openstack *does*
      manage the vlan ids).  Tunnels always go over the first flat data net.
      
      Be very flexible in terms of assigning IPs; generate them ourselves
      if they dind't come to us, or if user wants to use our generated ones.
      I tried to be smart (enough) with this.
      
      Setup VNC-based consoles on x86-64; working in dashboard.
      
      Don't put plaintext admin password in profile anymore; instead, expect
      a hash of the admin password.  Replace the temp admin password in the
      keystone database with the hash we get.  But, since the CLI tools
      all require real user auth, setup a secondary 'adminapi' account
      that is a real admin, and use that to see admin-openrc.sh for CLI
      tools, and for all our configuration, and places where the services
      use a real admin account to auth.  Also, push the admin password
      hash all the way into our instance images.
      a9265ea7
  11. 30 Jun, 2015 5 commits
  12. 18 May, 2015 6 commits
  13. 14 May, 2015 1 commit
  14. 22 Apr, 2015 3 commits
  15. 18 Apr, 2015 1 commit