-
Tue Mar 05 2013 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-73
- add a return for password fields for console input screen
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
Signed-off-by: Saar Maoz <Saar.Maoz@oracle.com> [bug 16429424]
-
Tue Jan 08 2013 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-72
- authentication: set root-password to empty upon cleanup
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
-
Tue Nov 13 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-71
- set hostname on dhcp
With boot parameter, ifup will try to get hostname from DNS servers and set it.
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com> [bug 15853856]
-
Sat Oct 20 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-70
- network: fix hosts entry limitation
Currently, to specify /etc/hosts entries, you have to specify 3 fields: IP,
Domain_Name, Alias.
Actually Alias is optional. I made this mistake while implementing this. Now the
attached patch fixes it.
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Adnan Misherfi <adnan.misherfi@oracle.com>
-
Fri Sep 07 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-69
- check password strength and clear console input
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Adnan Misherfi <adnan.misherfi@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
Cc: Wim Coekaerts <wim.coekaerts@oracle.com>
Cc: Kurt Hackel <kurt.hackel@oracle.com> [bug 14572009]
-
Thu Jun 07 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-68
- support unicode password
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com> [bug 13989234]
-
Fri Jun 01 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-67
- make console input screen cleaner by add hidden option to parameters
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
Cc: Wim Coekaerts <wim.coekaerts@oracle.com>
-
Sat Apr 28 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-66
- disable ctrl-d support for console input screen and don't allow empty string for password. [bug 13998385]
-
Thu Apr 19 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-65
- Don't print backtrace on error. Just print the error message.
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
-
Thu Apr 19 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-64
- make user password no echo on input
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
-
Fri Apr 13 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-63
- removes pexpect dependency and and uses passwd --stdin to change user
password.
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
-
Fri Apr 13 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-62
- network cleanup: remove persistent udev rules.
Some background:
* OL5 uses HWADDR in ifcfg-ethN to reorder NIC names. It is done by udev rule in
/etc/udev/rules.d/60-net.rules:
ACTION=="add", SUBSYSTEM=="net", IMPORT{program}="/lib/udev/rename_device"
* OL6 changed "/lib/udev/rename_device" implement: it will not actually rename a
device; instead it will only print the target name, then other udev rules will
write persistent udev rules based on this name. For OL6 on baremetal, when a new
NIC is detected, udev will write a rule in
/etc/udev/rules.d/70-persistent-net.rules, e.g.:
SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR{address}=="00:21:f6:00:00:dc", ATTR{type}=="1", KERNEL=="eth*", NAME="eth0"
It is written by /lib/udev/rules.d/75-persistent-net-generator.rules. But xen
vif is an exception: it will not write persistent udev rules for xen vif. It is
controlled by this line in /lib/udev/rules.d/75-persistent-net-generator.rules:
SUBSYSTEMS=="xen", GOTO="persistent_net_generator_end"
My proposal for ovm-template-config network script on OL6:
* Apply attached patch: cleanup /etc/udev/rules.d/70-persistent-net.rules before
ship Template.
* If users want change NIC names, just reorder them in vm.cfg: vif = ['mac=XXX',
'mac=YYY'], then in guest, the nic will be always called eth0, eth1, ...
* We don't write udev persistent net rules for xen netfront.
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com> [bug 13929093]
-
Wed Apr 11 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-61
- log errors when failed to run script
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Cc: Tianyue Lan <tianyue.lan@oracle.com>
Cc: Saar Maoz <saar.maoz@oracle.com> [bug 13946017]
-
Wed Apr 11 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-60
- raise exception when provide empty password
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
-
Wed Apr 11 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-59
- system: cleanup scrollkeeper log
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
-
Wed Apr 11 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-58
- system: retain oracle validated log
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
-
Fri Mar 30 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-57
- some cleanup fix:
1. Will not disable nptd service.
2. Will cleanup user .bash_history.
Please refer to: http://ca-bugzilla.us.oracle.com/bugzilla/show_bug.cgi?id=13652#c10
-
Sat Mar 17 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-56
- system: configure rhn uuid
For RHN, the initial /etc/sysconfig/rhn/up2date-uuid:
uuid[comment]=Universally Unique ID for this server
rhnuuid=UNSPECIFIED
In rpm %post, it update it with a random uuid (up2date.spec):
UUID=$(/usr/bin/uuidgen -t)
perl -p -i -e "s/UNSPECIFIED/$UUID/g" /etc/sysconfig/rhn/up2date-uuid
if [ -x /sbin/restorecon ]; then
/sbin/restorecon /etc/sysconfig/rhn/up2date-uuid
fi
Fix patch does:
* Change it to UNSPECIFIED on cleanup.
* Change it to a random uuid on configure.
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Singed-off-by: Tianyue Lan <tianyue.lan@oracle.com> [bug 13836292]
-
Wed Mar 14 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-55
- retain /var/log/rpmpkgs [bug 13836339]
-
Wed Feb 08 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-54
- improve ssh configuration and some code refactor
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Kurt Hackel <kurt.hackel@oracle.com>
-
Tue Jan 31 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-53
- ssh: user gid should be userinfo[3]
-
Sat Jan 21 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-52
- keep log text consistent: iso -> ISO
-
Fri Jan 20 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-51
- Capitalize messages
-
Wed Jan 18 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-50
- network: add mtu support
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Adnan Misherfi <adnan.misherfi@oracle.com>
-
Thu Jan 12 2012 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-49
- fix text message.
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
Signed-off-by: Kurt Hackel <kurt.hackel@oracle.com>
Signed-off-by: Tianyue Lan <tianyue.lan@oracle.com>
Signed-off-by: Alison Holloway <alison.holloway@oracle.com> [bug 13555477]
-
Thu Dec 29 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-48
- fix typo: empyt -> empty
-
Fri Nov 18 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-47
- network: dhcp should not have PEERDNS=no [bug 13357629]
-
Fri Nov 18 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-46
- datetime: fix ntp servers [bug 13393843]
-
Sat Nov 12 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-45
- fix parameter description
-
Thu Nov 10 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-44
- expose all keys to console input.
Also in this patch:
* network: ifdown and then ifup when configure a device.
* add --human-readable option.
* unify some keys: root_password -> root-password, selinux -> selinux.mode. [bug 13363141]
-
Sat Nov 05 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-43
- fix typo: adress -> address
-
Thu Nov 03 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-42
- add more scripts.
-
Wed Nov 02 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-41
- hide password. [bug 13078363]
-
Wed Nov 02 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-40
- execute script in order.
-
Fri Oct 28 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-39
- add system script and implement cleanup target. [bug 13004324]
-
Sat Oct 22 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-38
- don't ask for console input if there's no expected parameters
-
Sat Oct 22 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-37
- add --script option
-
Fri Oct 07 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-36
- improve enumerate handling.
-
Fri Oct 07 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-35
- network: add parameter to add entries to /etc/hosts.
-
Fri Oct 07 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-34
- remove error log containing sensitive parameters
-
Thu Oct 06 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-33
- network: fix typo: device -> 'lo'
-
Thu Oct 06 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-32
- network: always ifup lo device
-
Wed Oct 05 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-31
- make ipaddr optional when bootproto equals none or static.
-
Tue Oct 04 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-30
- netconfig: add new line
-
Tue Oct 04 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-29
- network: refactor dns count
-
Tue Oct 04 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-28
- enable space input
-
Mon Oct 03 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-27
- fix quotation mark in spec file
-
Sun Oct 02 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-26
- make 'description' optional
-
Fri Sep 30 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-25
- more fix for pvm cdrom support [bug 13004385]
-
Thu Sep 29 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-24
- add reconfigure
-
Thu Sep 29 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-23
- fix test case
-
Thu Sep 29 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-22
- add reconfigure target
-
Thu Sep 29 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-21
- change log level to INFO [bug 13004357]
-
Thu Sep 29 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-20
- add pv cdrom support for OVF transport iso [bug 13004385]
-
Fri Sep 23 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-19
- change authentication script priority to 90, so the required
'root_password' parameter will appear in the last.
-
Wed Sep 21 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-18
- fix test case
-
Mon Sep 19 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-17
- fix typo: OVMAPI -> OVMAPI
-
Mon Sep 19 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-16
- sleep before showing console input screen. [bug 12995965]
-
Sun Sep 18 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-15
- mark root_passwd as required and remove 'required' property from hostname.
I agree, and it represents the new security standards. We cannot ship
templates with a default password anymore (ovsroot). This must be
configured at instantiation.
Another option would have been to enforce a special key meaning "done"...
thanks
kurt
On 9/15/2011 5:51 AM, Zhigang Wang wrote:
> Hi Kurt and Steve,
>
> Currently we need one parameter to be 'required', otherwise ovm-template-config
> will not wait for any parameters.
>
> It's hostname for now, but Maturi suggest root_passwd, and I think it's better.
>
> Reason:
>
> 1). When using DHCP, hostname is not required.
> 2). Every template should have it's own root password, otherwise it will use the
> default password, which is a security vulnerability.
>
> Please give your comments.
>
> Thanks,
>
> Zhigang
-
Sun Sep 18 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-14
- fix datatime typo [bug 12989855]
-
Wed Sep 14 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-13
- fix test case
-
Wed Sep 14 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-12
- fix warnings find by pylint
-
Wed Sep 14 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-11
- remove unnecessary global statement
-
Wed Sep 14 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-10
- list is a builtin. Use do_list instead.
-
Wed Sep 14 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-9
- fix copying year
-
Wed Sep 14 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-8
- update license
-
Sat Sep 03 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-7
- make scripts OL6 compatible
-
Sat Aug 06 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-6
- remove some unimplemented unconfigure target
-
Sat Aug 06 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-5
- add more scripts
-
Wed Aug 03 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-4
- network: only write hwaddr when specified
-
Fri Jul 29 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-3
- network: write /etc/hosts with the hostname and the first find IP.
Also update the the network device ipaddr and netmask.
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
-
Wed Jul 27 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-2
- datatime: fix default emunerate param type
Signed-off-by: Zhigang Wang <zhigang.x.wang@oracle.com>
-
Wed Mar 23 2011 Zhigang Wang <zhigang.x.wang@oracle.com> - 3.0-1
- Initial build.