Marek Marczykowski
3255f81a1c
dom0/core: fix QubesVM.gateway
...
To be consistent with QubesNetVM, where gateway property contain gateway IP for
_other_ VMs, in non-network-provider VM it should be empty.
2012-06-05 19:57:19 +02:00
Marek Marczykowski
8b366f1148
dom0: default TemplateVM firewall: block all traffic and allow use of yum proxy ( #590 )
2012-06-05 19:37:39 +02:00
Marek Marczykowski
01e8a2dff9
dom0/core: implement per-VM-type firewall defaults
2012-06-05 19:37:12 +02:00
Marek Marczykowski
e4f64fd600
dom0/core: remove trailing spaces
2012-05-31 03:11:44 +02:00
Marek Marczykowski
65fc62a989
dom0/core: setup yum to use proxy when it have access to it ( #568 )
...
To simplify configuration, automatically enable 'yum-proxy-setup'
pseudo-service when allowing access to the proxy. Also disable this service,
when access is revoked. Thanks to this the user can enable this feature by one
click in firewall settings.
2012-05-31 03:11:44 +02:00
Marek Marczykowski
2ca4b11183
dom0/core-firewall: firewall setting for qubes-yum-proxy ( #568 )
...
New setting for access to qubes-yum-proxy. The difference from other firewall
setting (and reason for new top-level setting): 'deny' is enforced even if
policy is set to 'allow'. This proxy service is mainly used to filter network
traffic, so do not expose it to VMs which can connect to any host directly (eg
'untrusted' VM).
2012-05-31 03:11:44 +02:00
Marek Marczykowski
812264cfb0
dom0/core: don't limit netvm/proxyvm vcpu count to 1 ( #571 )
2012-05-31 03:09:22 +02:00
Marek Marczykowski
c49ad3438b
dom0/core: remove trailing spaces
2012-05-31 03:05:14 +02:00
Marek Marczykowski
d89733b517
dom0/core: setup yum to use proxy when it have access to it ( #568 )
...
To simplify configuration, automatically enable 'yum-proxy-setup'
pseudo-service when allowing access to the proxy. Also disable this service,
when access is revoked. Thanks to this the user can enable this feature by one
click in firewall settings.
2012-05-31 03:05:13 +02:00
Marek Marczykowski
030584f026
dom0/core-firewall: firewall setting for qubes-yum-proxy ( #568 )
...
New setting for access to qubes-yum-proxy. The difference from other firewall
setting (and reason for new top-level setting): 'deny' is enforced even if
policy is set to 'allow'. This proxy service is mainly used to filter network
traffic, so do not expose it to VMs which can connect to any host directly (eg
'untrusted' VM).
2012-05-31 03:05:13 +02:00
Marek Marczykowski
44c14d409c
dom0/core: don't limit netvm/proxyvm vcpu count to 1 ( #571 )
2012-05-25 15:06:00 +02:00
Marek Marczykowski
b87806db17
dom0: expose debug mode in xenstore ( #567 )
2012-05-22 15:51:40 +02:00
Marek Marczykowski
3d783f7fa3
dom0: expose debug mode in xenstore ( #567 )
2012-05-22 15:51:09 +02:00
Marek Marczykowski
987a490179
dom0/core: don't force maxmem=memory for NetVM ( #572 )
2012-05-20 02:10:50 +02:00
Marek Marczykowski
659dec044f
dom0/core: don't force maxmem=memory for NetVM ( #572 )
2012-05-20 02:08:56 +02:00
Marek Marczykowski
c78d38fb0d
dom0/core: disable private.img for HVM ( #26 pro)
2012-05-04 13:20:10 +02:00
Marek Marczykowski
9edc845184
dom0: create appmenus for NetVMs, using separate whitelist ( #538 )
2012-05-02 00:09:00 +02:00
Marek Marczykowski
7b81659593
dom0: create appmenus template and icon for all VMs
2012-05-02 00:09:00 +02:00
Marek Marczykowski
370ad33c44
dom0: provide service for VM to notify about updates availability ( #475 )
2012-05-02 00:09:00 +02:00
Marek Marczykowski
929d6b52c9
dom0: create appmenus for NetVMs, using separate whitelist ( #538 )
2012-05-01 02:05:07 +02:00
Marek Marczykowski
478b57f3a9
dom0: create appmenus template and icon for all VMs
2012-05-01 02:04:16 +02:00
Marek Marczykowski
fa41bf840c
dom0: provide service for VM to notify about updates availability ( #475 )
2012-05-01 01:12:19 +02:00
Marek Marczykowski
db6eb497a6
dom0/core: do not relay on any max xid ( #445 )
...
What is really required is the maximum number of domains, not its IDs. Use max
QID as maximum number of domains.
2012-04-28 03:26:20 +02:00
Marek Marczykowski
2ec08734dd
dom0/core: guid for HVM is connected to stubdom - respect it when checking its state ( #25 pro)
2012-04-28 02:51:43 +02:00
Marek Marczykowski
1b9e780861
dom0/core: do not relay on any max xid ( #445 )
...
What is really required is the maximum number of domains, not its IDs. Use max
QID as maximum number of domains.
2012-04-28 02:17:04 +02:00
Marek Marczykowski
a8ec5a6506
dom0/core: add 'timezone' property support ( #1 pro)
2012-04-24 13:09:27 +02:00
Marek Marczykowski
4ce7824fa0
dom0/core: remove unnecessary assignment
...
This is already done by 'eval' entry in _get_attrs_config.
2012-04-24 13:07:21 +02:00
Marek Marczykowski
016837a19c
dom0/core: fix 'drive' saving logic
...
There is no longer need to override get_xml_attrs. Also include 'drive' in
properties retrieved from qubes.xml.
2012-04-24 13:05:41 +02:00
Marek Marczykowski
c5cc6620d3
dom0/core: include VM name in "insufficient memory" message ( #534 )
2012-04-24 02:14:17 +02:00
Marek Marczykowski
705699baf2
dom0/core: include VM name in "insufficient memory" message ( #534 )
2012-04-24 01:38:02 +02:00
Marek Marczykowski
e73b13c68d
dom0/core: add 'debug' VM property ( #537 )
2012-04-23 12:43:24 +02:00
Marek Marczykowski
1076e09dc0
dom0/core: rename "Starting" start to "Transient"
...
This state can also appear at VM shutdown.
2012-04-23 12:42:18 +02:00
Marek Marczykowski
a38f1b4284
dom0/core: add 'debug' VM property ( #537 )
2012-04-23 12:19:54 +02:00
Marek Marczykowski
9d3c008ecb
dom0/core: fix memory parse fix
2012-04-20 15:39:39 +02:00
Marek Marczykowski
19d10d3829
dom0/core: fix memory parse fix
2012-04-20 15:39:13 +02:00
Marek Marczykowski
d7b80fe3d4
dom0/core: parse memory and maxmem as int
2012-04-20 14:48:43 +02:00
Marek Marczykowski
ff0b6d4352
dom0/core: parse memory and maxmem as int
2012-04-20 14:48:25 +02:00
Marek Marczykowski
ff2be63090
dom0/core: rename "Starting" start to "Transient"
...
This state can also appear at VM shutdown.
2012-04-20 13:49:33 +02:00
Marek Marczykowski
28666c47f5
dom0/core: check if object has attr before using it
2012-04-20 13:33:41 +02:00
Marek Marczykowski
0633e35fa6
dom0/core: include pcidevs and include_in_backups in cloned attrs
...
Preserve it in qvm-clone and backup-restore
2012-04-20 03:14:09 +02:00
Marek Marczykowski
a6d38480c6
dom0/core: do not write netvm_domid for halted VMs
2012-04-20 03:14:09 +02:00
Marek Marczykowski
cc5ce33e91
dom0/core: include pcidevs and include_in_backups in cloned attrs
...
Preserve it in qvm-clone and backup-restore
2012-04-20 03:12:06 +02:00
Marek Marczykowski
85609a764f
dom0/core: do not write netvm_domid for halted VMs
2012-04-19 14:43:05 +02:00
Marek Marczykowski
3d316ca2f9
dom0/core: introduce "Starting" state ( #520 )
...
Represent VM which is running, but gui daemon hasn't connected yet.
2012-04-19 01:16:00 +02:00
Marek Marczykowski
5bfe1f7c60
dom0/core: introduce "Starting" state ( #520 )
...
Represent VM which is running, but gui daemon hasn't connected yet.
2012-04-19 01:13:26 +02:00
Marek Marczykowski
ceeed3bd8b
dom0/qvm-start: fix --no-guid switch ( #528 )
2012-04-18 17:38:38 +02:00
Marek Marczykowski
47b70235e3
dom0/core: force memory <= maxmem at VM startup ( #497 )
2012-04-18 16:53:50 +02:00
Marek Marczykowski
abaea52da0
dom0/core: detect if PCI device not already attached to some other VM ( #522 )
2012-04-18 16:53:50 +02:00
Marek Marczykowski
27771444a9
dom0/core: If dynamic memory management disabled, set maxmem=mem ( #525 )
2012-04-18 16:53:50 +02:00
Marek Marczykowski
997c0ed86b
dom0/core: pass all start() parameters to the base class
2012-04-18 16:53:50 +02:00
Marek Marczykowski
202edd63e6
dom0/core: force memory <= maxmem at VM startup ( #497 )
2012-04-18 12:31:58 +02:00
Marek Marczykowski
300d0e1841
dom0/core: detect if PCI device not already attached to some other VM ( #522 )
2012-04-18 11:11:04 +02:00
Marek Marczykowski
c5d0b4e5de
dom0/core: remove appmenus for HVM on qvm-remove ( #23 pro)
2012-04-18 10:24:12 +02:00
Marek Marczykowski
3f06aca119
dom0/core: If dynamic memory management disabled, set maxmem=mem ( #525 )
2012-04-17 16:32:31 +02:00
Marek Marczykowski
6d52e38874
dom0/qvm-start: fix --no-guid switch ( #528 )
2012-04-17 02:52:26 +02:00
Marek Marczykowski
30d9048be0
dom0/core: pass all start() parameters to the base class
2012-04-17 02:43:30 +02:00
Marek Marczykowski
158076d0a2
dom0/core: minor netvm switching
...
Do not fail when setting netvm to none of running VM.
2012-04-11 01:36:51 +02:00
Marek Marczykowski
96756fa1fa
dom0/core: minor netvm switching
...
Do not fail when setting netvm to none of running VM.
2012-04-07 01:26:34 +02:00
Marek Marczykowski
1e9cad6498
dom0/core: fix create private.img
2012-04-05 23:47:21 +02:00
Marek Marczykowski
7dafb32ee1
dom0/drive: fix hd: prefix parsing
2012-03-28 11:52:23 +02:00
Marek Marczykowski
3650ac837e
dom0/core: do not inherit kernel version from template ( #488 )
2012-03-28 00:49:02 +02:00
Marek Marczykowski
191967fd41
dom0/core: ensure that vm.services['meminfo-writer'] is present
2012-03-28 00:47:26 +02:00
Marek Marczykowski
9c4c111336
dom0/core: minor HVM creation cleanup
...
Setting kernel is senseless here - it will be ignored
2012-03-28 00:36:37 +02:00
Marek Marczykowski
f4e9128bc5
dom0/core: do not inherit kernel version from template ( #488 )
2012-03-28 00:35:14 +02:00
Marek Marczykowski
262400c6d8
dom0/core: ensure that vm.services['meminfo-writer'] is present
2012-03-27 13:13:10 +02:00
Marek Marczykowski
5e1a9c203f
dom0/drive: allow dashes in VM name ( #19 pro)
2012-03-26 20:36:06 +02:00
Marek Marczykowski
7d66d7c842
dom0/drive: add "cdrom:" prefix ( #19 )
...
To deal with VM named "hd". Also add --cdrom and --hddisk options to qvm-start.
2012-03-26 20:25:49 +02:00
Marek Marczykowski
1465b8f104
dom0/core: fix clone of HVM ( #17 )
2012-03-26 11:33:30 +02:00
Marek Marczykowski
a775e60c41
dom0/drive: allow to specify backend domain and force "disk" type
2012-03-20 16:21:03 +01:00
Marek Marczykowski
049a74d5af
dom0/qvm-start: support for custom Xen config
2012-03-15 20:59:49 +01:00
Marek Marczykowski
edecda6a97
dom0/qvm-start: support for custom Xen config
2012-03-15 20:58:12 +01:00
Marek Marczykowski
0c9781648a
dom0/core: one more "nonupdatable template" cleanup
2012-03-15 20:25:44 +01:00
Marek Marczykowski
616a86d211
dom0/core: one more "nonupdatable template" cleanup
2012-03-15 20:24:56 +01:00
Marek Marczykowski
e632c5c3d0
dom0/core: fix typo on creating HVM private.img
2012-03-14 21:39:13 +01:00
Marek Marczykowski
870a4f452a
dom0/core: typo fix
2012-03-12 08:17:22 +01:00
Marek Marczykowski
466eaa02c1
dom0/core: create HVM private.img if it doesn't exists
2012-03-11 13:28:25 +01:00
Marek Marczykowski
b4adf6fdd0
dom0/core: verify files before starting VM
2012-03-11 00:43:11 +01:00
Marek Marczykowski
cd8c64b345
dom0/hvm: detect missing private.img
2012-03-11 00:43:11 +01:00
Marek Marczykowski
1227741e28
dom0/core: disable automatic starting NetVM when trying attach to
2012-03-11 00:43:11 +01:00
Marek Marczykowski
242c074dd0
dom0/hvm: do not inhibit private.img for HVM
2012-03-11 00:42:53 +01:00
Marek Marczykowski
cc8975d9f2
dom0/core: verify files before starting VM
2012-03-11 00:33:39 +01:00
Marek Marczykowski
dd89fab841
dom0/core: disable automatic starting NetVM when trying attach to
2012-03-11 00:28:21 +01:00
Marek Marczykowski
3171cdbdcc
Merge branch 'master' into hvm
...
Conflicts:
dom0/qvm-core/qubes.py
dom0/qvm-tools/qvm-create
dom0/qvm-tools/qvm-prefs
2012-03-09 11:34:13 +01:00
Marek Marczykowski
cdd73f3d14
dom0/core: drop support for non-updateable templates
...
Implement 'updateable' property as 'template is None'
2012-03-09 11:28:06 +01:00
Marek Marczykowski
f143b6c1f2
dom0/core: minor error handling fix
2012-03-09 11:02:38 +01:00
Marek Marczykowski
d7aed8b233
dom0/core: API CHANGE: change 'template_vm' to 'template'
...
Just to match property displayed everywhere, also simplifying tools like
qvm-prefs.
2012-03-09 11:01:20 +01:00
Marek Marczykowski
a58259a171
Merge branch 'master' into hvm
...
Conflicts:
version_dom0
version_vm
2012-03-09 10:19:34 +01:00
Marek Marczykowski
ceed4507eb
dom0/qvm-network: implement dynamic switching in property setter ( #478 )
...
Also add to it missing parts: firewall reload and netid attr set (+perms for it)
2012-03-09 01:52:28 +01:00
Marek Marczykowski
1d5f54c976
dom0/qvm-firewall: make firewall IP-based, not IF-based
...
Some VMs (especially HVM) can have more than one vif, so to not dupplicate
rules, make it IP based.
2012-03-08 14:50:46 +01:00
Marek Marczykowski
cae2672171
dom0/qvm-firewall: make firewall IP-based, not IF-based
...
Some VMs (especially HVM) can have more than one vif, so to not dupplicate
rules, make it IP based.
2012-03-08 14:40:00 +01:00
Marek Marczykowski
8c794d95e2
dom0/core: pause also stubdom when pausing HVM
2012-03-08 12:19:37 +01:00
Marek Marczykowski
07f560042c
dom0/core: use QubesVm.pause/unpause instead of xl directly
2012-03-08 12:04:47 +01:00
Marek Marczykowski
fc283e22c8
dom0/core: use QubesVm.pause/unpause instead of xl directly
2012-03-08 12:03:49 +01:00
Marek Marczykowski
fc573d0467
dom0/core: follow new __init__ API in QubesHVm
2012-03-08 11:57:47 +01:00
Marek Marczykowski
567229c104
dom0/core: follow new __init__ api in subclasses
2012-03-08 11:57:11 +01:00
Marek Marczykowski
63e19e1afa
dom0/core: follow new __init__ api in subclasses
2012-03-08 11:56:26 +01:00
Marek Marczykowski
de9f952a2e
dom0/core: more generic way to specify xen config template
2012-03-08 11:54:27 +01:00
Marek Marczykowski
8433931822
dom0/core: major rework of QubesVm.__init__ and serialization
...
No more manually set attributes, each in different way. Now there is one dict
with attrs, defaults, used also for object serialization to XML.
2012-03-08 11:27:56 +01:00
Marek Marczykowski
07d7620f23
dom0/core: major rework of QubesVm.__init__ and serialization
...
No more manually set attributes, each in different way. Now there is one dict
with attrs, defaults, used also for object serialization to XML.
2012-03-08 11:22:46 +01:00
Marek Marczykowski
9360a18b0c
dom0/QubesVm: add include_in_backups property
2012-03-07 19:16:25 +01:00
Marek Marczykowski
f6c222d957
dom0/QubesVm: add include_in_backups property
2012-03-07 19:15:51 +01:00
Marek Marczykowski
7d07bc718b
dom0/dispvm: clone QubesVmLabel object for DispVM
2012-03-07 19:04:47 +01:00
Marek Marczykowski
b3d0afc360
dom0/dispvm: clone QubesVmLabel object for DispVM
2012-03-07 18:50:56 +01:00
Marek Marczykowski
e2c62b9424
dom0/dispvm: icons for DispVM
...
Beautiful icons thanks to Agnieszka Kostrzewa!
2012-03-07 17:13:03 +01:00
Marek Marczykowski
8b29a09986
dom0/dispvm: icons for DispVM
...
Beautiful icons thanks to Agnieszka Kostrzewa!
2012-03-07 17:04:25 +01:00
Marek Marczykowski
a717b3755e
Merge branch 'master' into hvm
...
Conflicts:
dom0/qvm-core/qubes.py
2012-03-06 02:21:52 +01:00
Marek Marczykowski
1b1c48666f
dom0/qvm-core: network parameters for use in Xen config template
2012-03-06 02:20:12 +01:00
Marek Marczykowski
a5c69af852
dom0/core: netvm_vm -> netvm - HVM-specific
2012-03-04 22:00:41 +01:00
Marek Marczykowski
63b51e41ce
dom0/core: change QubesVm.netvm_vm to QubesVm.netvm
...
To simplify setters and getters.
2012-03-04 22:00:10 +01:00
Marek Marczykowski
7db35b7ce6
dom0/core: change QubesVm.netvm_vm to QubesVm.netvm
...
To simplify setters and getters.
2012-03-04 21:59:02 +01:00
Marek Marczykowski
c40bb7fd69
Merge branch 'master' into hvm
2012-03-02 16:31:01 +01:00
Marek Marczykowski
b7b5260bd7
dom0/core: preserve MAC setting on clone
2012-03-02 16:29:56 +01:00
Marek Marczykowski
b4b639cbb3
dom0/core: clone support for HVM
2012-03-02 16:28:15 +01:00
Marek Marczykowski
abb9e64e3f
Merge branch 'master' into hvm
...
Conflicts:
dom0/qvm-core/qubes.py
dom0/qvm-tools/qvm-prefs
2012-03-02 16:21:48 +01:00
Marek Marczykowski
7c9075d09b
dom0/qvm-network: allow to set persistent MAC for VM
2012-03-02 16:07:31 +01:00
Marek Marczykowski
5f87303b69
dom0/core: rework of VM clone mechanism
2012-03-02 16:06:26 +01:00
Marek Marczykowski
5191c64b06
dom0/core: more robust XML attrs generation
...
Still not ideal...
2012-03-02 16:00:55 +01:00
Marek Marczykowski
4d554fd182
dom0/core: set default memory for HVM to 512MB
2012-03-02 14:28:09 +01:00
Marek Marczykowski
1c2311226e
dom0/network: use static MAC for VMs
2012-03-02 13:51:20 +01:00
Marek Marczykowski
e4b23f6670
dom0/network: use static MAC for VMs
2012-03-02 13:49:23 +01:00
Marek Marczykowski
cec197ac8b
dom0/core: set *_img to None for HVM instead of removing attr
...
There are many places that assume existence of this attributes.
2012-03-02 12:04:57 +01:00
Marek Marczykowski
d1bd26ebe0
dom0/core: get stubdom xid also for paused domains
...
Especially during HVM startup.
2012-03-02 02:38:33 +01:00
Marek Marczykowski
287e9f72fe
dom0/core: provide vif name also for paused VMs
2012-03-02 02:28:45 +01:00
Marek Marczykowski
a387393b43
dom0/core: provide vif name also for paused HVMs
2012-03-02 02:27:13 +01:00
Marek Marczykowski
f31422cbb3
dom0/core: provide vif name also for paused VMs
2012-03-02 02:26:37 +01:00
Marek Marczykowski
f06d309a69
dom0/qvm-core: create icon symlink for HVM
2012-03-02 01:56:50 +01:00
Marek Marczykowski
25b57bab88
dom0/appmenus: Create "Start" appmenu for HVM domains
2012-03-02 01:56:50 +01:00
Marek Marczykowski
4749792e70
dom0/qvm-core: force HVM to be updateable
2012-03-02 01:56:50 +01:00
Marek Marczykowski
afecabdc59
dom0/qvm-firewall: provide custom vif name by QubesHVM
2012-03-02 01:56:45 +01:00
Marek Marczykowski
997fec6fd6
dom0/qvm-firewall: provide vif name by QubesVM
2012-03-02 01:22:40 +01:00
Marek Marczykowski
c13c1c920f
dom0/qvm-firewall: provide vif name by QubesVM
2012-03-02 01:16:03 +01:00
Marek Marczykowski
370c4952ce
Merge branch 'master' into hvm
2012-03-01 23:40:31 +01:00
Marek Marczykowski
dcf6957e85
dom0/core: xvdi is to high for qemu
2012-03-01 11:23:07 +01:00
Marek Marczykowski
45c1c01410
dom0/core: use xvdi as cdrom frontend
...
When used both xvd* and hd* only xvd* isn't detected.
2012-03-01 11:00:33 +01:00
Marek Marczykowski
dd88e7d72a
dom0: fix qvm-grow-private ( #459 )
2012-02-29 23:12:05 +01:00
Marek Marczykowski
c44032d37a
Merge branch 'master' into hvm
2012-02-29 03:58:29 +01:00
Marek Marczykowski
c013de4747
dom0/qubes-firewall: make protocol selection smart
2012-02-27 15:46:23 +01:00
Marek Marczykowski
c3356296a5
Merge branch 'master' into hvm
2012-02-27 15:14:21 +01:00
Marek Marczykowski
a0e9feef92
dom0/qubes-firewall: typo fix
2012-02-27 15:07:00 +01:00
Joanna Rutkowska
54b08ee0f9
Merge branch 'hvm' of 10.141.1.101:/var/lib/qubes/git/marmarek/core into hvm
2012-02-27 15:00:54 +01:00
Joanna Rutkowska
0e0fe6a3d9
Merge branch 'master' of git://git.qubes-os.org/marmarek/core into hvm
2012-02-27 13:30:14 +01:00
Joanna Rutkowska
859c99da5c
Merge branch 'hvm' of 10.141.1.101:/var/lib/qubes/git/marmarek/core
2012-02-27 13:17:48 +01:00
Marek Marczykowski
628458108d
dom0/qvm-core: fix kernelopts parsing in case of QubesHVM
2012-02-27 03:30:35 +01:00
Marek Marczykowski
0ca08d48b8
dom0/qubes-firewall: allow to specify protocol, do not assume always tcp
2012-02-27 02:02:42 +01:00
Marek Marczykowski
80e2afa97b
dom0/qvm-core: add missing get_xid
2012-02-26 00:58:05 +01:00
Marek Marczykowski
40762c5497
dom0/qvm-core: update icon cache after label change
2012-02-26 00:07:06 +01:00
Marek Marczykowski
40d8ac66a3
dom0/core: introduce QubesHVm class
2012-02-24 04:24:13 +01:00
Marek Marczykowski
85c5074dbe
dom0/core: check if object has attr before using it
2012-02-24 04:22:14 +01:00
Marek Marczykowski
8b3a895317
dom0/core: more robust XML attrs generation
...
Still not ideal...
2012-02-24 04:19:51 +01:00
Marek Marczykowski
db4a96dfea
dom0/core: move qrexec start to separate function
2012-02-24 04:18:45 +01:00