Marek Marczykowski
a528befbc4
dom0: default TemplateVM firewall: block all traffic and allow use of yum proxy ( #590 )
2012-06-05 21:21:53 +02:00
Marek Marczykowski
a8b992e647
dom0/core: implement per-VM-type firewall defaults
2012-06-05 21:21:53 +02:00
Marek Marczykowski
3f3dc4708c
dom0: populate unchanged firewall settings with previous values ( #589 )
...
Missed settings in new firewall configuration caused exception. In old qubes-manager (before #582 done) this exception silently broke saving operation, leaving user with progress bar windows infinitely...
2012-06-05 20:57:40 +02:00
Marek Marczykowski
3255f81a1c
dom0/core: fix QubesVM.gateway
...
To be consistent with QubesNetVM, where gateway property contain gateway IP for
_other_ VMs, in non-network-provider VM it should be empty.
2012-06-05 19:57:19 +02:00
Marek Marczykowski
8b366f1148
dom0: default TemplateVM firewall: block all traffic and allow use of yum proxy ( #590 )
2012-06-05 19:37:39 +02:00
Marek Marczykowski
01e8a2dff9
dom0/core: implement per-VM-type firewall defaults
2012-06-05 19:37:12 +02:00
Marek Marczykowski
e4f64fd600
dom0/core: remove trailing spaces
2012-05-31 03:11:44 +02:00
Marek Marczykowski
65fc62a989
dom0/core: setup yum to use proxy when it have access to it ( #568 )
...
To simplify configuration, automatically enable 'yum-proxy-setup'
pseudo-service when allowing access to the proxy. Also disable this service,
when access is revoked. Thanks to this the user can enable this feature by one
click in firewall settings.
2012-05-31 03:11:44 +02:00
Marek Marczykowski
2ca4b11183
dom0/core-firewall: firewall setting for qubes-yum-proxy ( #568 )
...
New setting for access to qubes-yum-proxy. The difference from other firewall
setting (and reason for new top-level setting): 'deny' is enforced even if
policy is set to 'allow'. This proxy service is mainly used to filter network
traffic, so do not expose it to VMs which can connect to any host directly (eg
'untrusted' VM).
2012-05-31 03:11:44 +02:00
Marek Marczykowski
812264cfb0
dom0/core: don't limit netvm/proxyvm vcpu count to 1 ( #571 )
2012-05-31 03:09:22 +02:00
Marek Marczykowski
c49ad3438b
dom0/core: remove trailing spaces
2012-05-31 03:05:14 +02:00
Marek Marczykowski
d89733b517
dom0/core: setup yum to use proxy when it have access to it ( #568 )
...
To simplify configuration, automatically enable 'yum-proxy-setup'
pseudo-service when allowing access to the proxy. Also disable this service,
when access is revoked. Thanks to this the user can enable this feature by one
click in firewall settings.
2012-05-31 03:05:13 +02:00
Marek Marczykowski
030584f026
dom0/core-firewall: firewall setting for qubes-yum-proxy ( #568 )
...
New setting for access to qubes-yum-proxy. The difference from other firewall
setting (and reason for new top-level setting): 'deny' is enforced even if
policy is set to 'allow'. This proxy service is mainly used to filter network
traffic, so do not expose it to VMs which can connect to any host directly (eg
'untrusted' VM).
2012-05-31 03:05:13 +02:00
Marek Marczykowski
44c14d409c
dom0/core: don't limit netvm/proxyvm vcpu count to 1 ( #571 )
2012-05-25 15:06:00 +02:00
Marek Marczykowski
b87806db17
dom0: expose debug mode in xenstore ( #567 )
2012-05-22 15:51:40 +02:00
Marek Marczykowski
3d783f7fa3
dom0: expose debug mode in xenstore ( #567 )
2012-05-22 15:51:09 +02:00
Marek Marczykowski
987a490179
dom0/core: don't force maxmem=memory for NetVM ( #572 )
2012-05-20 02:10:50 +02:00
Marek Marczykowski
659dec044f
dom0/core: don't force maxmem=memory for NetVM ( #572 )
2012-05-20 02:08:56 +02:00
Marek Marczykowski
c78d38fb0d
dom0/core: disable private.img for HVM ( #26 pro)
2012-05-04 13:20:10 +02:00
Marek Marczykowski
9edc845184
dom0: create appmenus for NetVMs, using separate whitelist ( #538 )
2012-05-02 00:09:00 +02:00
Marek Marczykowski
7b81659593
dom0: create appmenus template and icon for all VMs
2012-05-02 00:09:00 +02:00
Marek Marczykowski
370ad33c44
dom0: provide service for VM to notify about updates availability ( #475 )
2012-05-02 00:09:00 +02:00
Marek Marczykowski
929d6b52c9
dom0: create appmenus for NetVMs, using separate whitelist ( #538 )
2012-05-01 02:05:07 +02:00
Marek Marczykowski
478b57f3a9
dom0: create appmenus template and icon for all VMs
2012-05-01 02:04:16 +02:00
Marek Marczykowski
fa41bf840c
dom0: provide service for VM to notify about updates availability ( #475 )
2012-05-01 01:12:19 +02:00
Marek Marczykowski
db6eb497a6
dom0/core: do not relay on any max xid ( #445 )
...
What is really required is the maximum number of domains, not its IDs. Use max
QID as maximum number of domains.
2012-04-28 03:26:20 +02:00
Marek Marczykowski
2ec08734dd
dom0/core: guid for HVM is connected to stubdom - respect it when checking its state ( #25 pro)
2012-04-28 02:51:43 +02:00
Marek Marczykowski
1b9e780861
dom0/core: do not relay on any max xid ( #445 )
...
What is really required is the maximum number of domains, not its IDs. Use max
QID as maximum number of domains.
2012-04-28 02:17:04 +02:00
Marek Marczykowski
a8ec5a6506
dom0/core: add 'timezone' property support ( #1 pro)
2012-04-24 13:09:27 +02:00
Marek Marczykowski
4ce7824fa0
dom0/core: remove unnecessary assignment
...
This is already done by 'eval' entry in _get_attrs_config.
2012-04-24 13:07:21 +02:00
Marek Marczykowski
016837a19c
dom0/core: fix 'drive' saving logic
...
There is no longer need to override get_xml_attrs. Also include 'drive' in
properties retrieved from qubes.xml.
2012-04-24 13:05:41 +02:00
Marek Marczykowski
c5cc6620d3
dom0/core: include VM name in "insufficient memory" message ( #534 )
2012-04-24 02:14:17 +02:00
Marek Marczykowski
705699baf2
dom0/core: include VM name in "insufficient memory" message ( #534 )
2012-04-24 01:38:02 +02:00
Marek Marczykowski
e73b13c68d
dom0/core: add 'debug' VM property ( #537 )
2012-04-23 12:43:24 +02:00
Marek Marczykowski
1076e09dc0
dom0/core: rename "Starting" start to "Transient"
...
This state can also appear at VM shutdown.
2012-04-23 12:42:18 +02:00
Marek Marczykowski
a38f1b4284
dom0/core: add 'debug' VM property ( #537 )
2012-04-23 12:19:54 +02:00
Marek Marczykowski
9d3c008ecb
dom0/core: fix memory parse fix
2012-04-20 15:39:39 +02:00
Marek Marczykowski
19d10d3829
dom0/core: fix memory parse fix
2012-04-20 15:39:13 +02:00
Marek Marczykowski
d7b80fe3d4
dom0/core: parse memory and maxmem as int
2012-04-20 14:48:43 +02:00
Marek Marczykowski
ff0b6d4352
dom0/core: parse memory and maxmem as int
2012-04-20 14:48:25 +02:00
Marek Marczykowski
ff2be63090
dom0/core: rename "Starting" start to "Transient"
...
This state can also appear at VM shutdown.
2012-04-20 13:49:33 +02:00
Marek Marczykowski
28666c47f5
dom0/core: check if object has attr before using it
2012-04-20 13:33:41 +02:00
Marek Marczykowski
0633e35fa6
dom0/core: include pcidevs and include_in_backups in cloned attrs
...
Preserve it in qvm-clone and backup-restore
2012-04-20 03:14:09 +02:00
Marek Marczykowski
a6d38480c6
dom0/core: do not write netvm_domid for halted VMs
2012-04-20 03:14:09 +02:00
Marek Marczykowski
cc5ce33e91
dom0/core: include pcidevs and include_in_backups in cloned attrs
...
Preserve it in qvm-clone and backup-restore
2012-04-20 03:12:06 +02:00
Marek Marczykowski
85609a764f
dom0/core: do not write netvm_domid for halted VMs
2012-04-19 14:43:05 +02:00
Marek Marczykowski
3d316ca2f9
dom0/core: introduce "Starting" state ( #520 )
...
Represent VM which is running, but gui daemon hasn't connected yet.
2012-04-19 01:16:00 +02:00
Marek Marczykowski
5bfe1f7c60
dom0/core: introduce "Starting" state ( #520 )
...
Represent VM which is running, but gui daemon hasn't connected yet.
2012-04-19 01:13:26 +02:00
Marek Marczykowski
ceeed3bd8b
dom0/qvm-start: fix --no-guid switch ( #528 )
2012-04-18 17:38:38 +02:00
Marek Marczykowski
47b70235e3
dom0/core: force memory <= maxmem at VM startup ( #497 )
2012-04-18 16:53:50 +02:00
Marek Marczykowski
abaea52da0
dom0/core: detect if PCI device not already attached to some other VM ( #522 )
2012-04-18 16:53:50 +02:00
Marek Marczykowski
27771444a9
dom0/core: If dynamic memory management disabled, set maxmem=mem ( #525 )
2012-04-18 16:53:50 +02:00
Marek Marczykowski
997c0ed86b
dom0/core: pass all start() parameters to the base class
2012-04-18 16:53:50 +02:00
Marek Marczykowski
202edd63e6
dom0/core: force memory <= maxmem at VM startup ( #497 )
2012-04-18 12:31:58 +02:00
Marek Marczykowski
300d0e1841
dom0/core: detect if PCI device not already attached to some other VM ( #522 )
2012-04-18 11:11:04 +02:00
Marek Marczykowski
c5d0b4e5de
dom0/core: remove appmenus for HVM on qvm-remove ( #23 pro)
2012-04-18 10:24:12 +02:00
Marek Marczykowski
3f06aca119
dom0/core: If dynamic memory management disabled, set maxmem=mem ( #525 )
2012-04-17 16:32:31 +02:00
Marek Marczykowski
6d52e38874
dom0/qvm-start: fix --no-guid switch ( #528 )
2012-04-17 02:52:26 +02:00
Marek Marczykowski
30d9048be0
dom0/core: pass all start() parameters to the base class
2012-04-17 02:43:30 +02:00
Marek Marczykowski
158076d0a2
dom0/core: minor netvm switching
...
Do not fail when setting netvm to none of running VM.
2012-04-11 01:36:51 +02:00
Marek Marczykowski
96756fa1fa
dom0/core: minor netvm switching
...
Do not fail when setting netvm to none of running VM.
2012-04-07 01:26:34 +02:00
Marek Marczykowski
1e9cad6498
dom0/core: fix create private.img
2012-04-05 23:47:21 +02:00
Marek Marczykowski
7dafb32ee1
dom0/drive: fix hd: prefix parsing
2012-03-28 11:52:23 +02:00
Marek Marczykowski
3650ac837e
dom0/core: do not inherit kernel version from template ( #488 )
2012-03-28 00:49:02 +02:00
Marek Marczykowski
191967fd41
dom0/core: ensure that vm.services['meminfo-writer'] is present
2012-03-28 00:47:26 +02:00
Marek Marczykowski
9c4c111336
dom0/core: minor HVM creation cleanup
...
Setting kernel is senseless here - it will be ignored
2012-03-28 00:36:37 +02:00
Marek Marczykowski
f4e9128bc5
dom0/core: do not inherit kernel version from template ( #488 )
2012-03-28 00:35:14 +02:00
Marek Marczykowski
262400c6d8
dom0/core: ensure that vm.services['meminfo-writer'] is present
2012-03-27 13:13:10 +02:00
Marek Marczykowski
5e1a9c203f
dom0/drive: allow dashes in VM name ( #19 pro)
2012-03-26 20:36:06 +02:00
Marek Marczykowski
7d66d7c842
dom0/drive: add "cdrom:" prefix ( #19 )
...
To deal with VM named "hd". Also add --cdrom and --hddisk options to qvm-start.
2012-03-26 20:25:49 +02:00
Marek Marczykowski
1465b8f104
dom0/core: fix clone of HVM ( #17 )
2012-03-26 11:33:30 +02:00
Marek Marczykowski
a775e60c41
dom0/drive: allow to specify backend domain and force "disk" type
2012-03-20 16:21:03 +01:00
Marek Marczykowski
049a74d5af
dom0/qvm-start: support for custom Xen config
2012-03-15 20:59:49 +01:00
Marek Marczykowski
edecda6a97
dom0/qvm-start: support for custom Xen config
2012-03-15 20:58:12 +01:00
Marek Marczykowski
0c9781648a
dom0/core: one more "nonupdatable template" cleanup
2012-03-15 20:25:44 +01:00
Marek Marczykowski
616a86d211
dom0/core: one more "nonupdatable template" cleanup
2012-03-15 20:24:56 +01:00
Marek Marczykowski
e632c5c3d0
dom0/core: fix typo on creating HVM private.img
2012-03-14 21:39:13 +01:00
Marek Marczykowski
870a4f452a
dom0/core: typo fix
2012-03-12 08:17:22 +01:00
Marek Marczykowski
466eaa02c1
dom0/core: create HVM private.img if it doesn't exists
2012-03-11 13:28:25 +01:00
Marek Marczykowski
b4adf6fdd0
dom0/core: verify files before starting VM
2012-03-11 00:43:11 +01:00
Marek Marczykowski
cd8c64b345
dom0/hvm: detect missing private.img
2012-03-11 00:43:11 +01:00
Marek Marczykowski
1227741e28
dom0/core: disable automatic starting NetVM when trying attach to
2012-03-11 00:43:11 +01:00
Marek Marczykowski
242c074dd0
dom0/hvm: do not inhibit private.img for HVM
2012-03-11 00:42:53 +01:00
Marek Marczykowski
cc8975d9f2
dom0/core: verify files before starting VM
2012-03-11 00:33:39 +01:00
Marek Marczykowski
dd89fab841
dom0/core: disable automatic starting NetVM when trying attach to
2012-03-11 00:28:21 +01:00
Marek Marczykowski
3171cdbdcc
Merge branch 'master' into hvm
...
Conflicts:
dom0/qvm-core/qubes.py
dom0/qvm-tools/qvm-create
dom0/qvm-tools/qvm-prefs
2012-03-09 11:34:13 +01:00
Marek Marczykowski
cdd73f3d14
dom0/core: drop support for non-updateable templates
...
Implement 'updateable' property as 'template is None'
2012-03-09 11:28:06 +01:00
Marek Marczykowski
f143b6c1f2
dom0/core: minor error handling fix
2012-03-09 11:02:38 +01:00
Marek Marczykowski
d7aed8b233
dom0/core: API CHANGE: change 'template_vm' to 'template'
...
Just to match property displayed everywhere, also simplifying tools like
qvm-prefs.
2012-03-09 11:01:20 +01:00
Marek Marczykowski
a58259a171
Merge branch 'master' into hvm
...
Conflicts:
version_dom0
version_vm
2012-03-09 10:19:34 +01:00
Marek Marczykowski
ceed4507eb
dom0/qvm-network: implement dynamic switching in property setter ( #478 )
...
Also add to it missing parts: firewall reload and netid attr set (+perms for it)
2012-03-09 01:52:28 +01:00
Marek Marczykowski
1d5f54c976
dom0/qvm-firewall: make firewall IP-based, not IF-based
...
Some VMs (especially HVM) can have more than one vif, so to not dupplicate
rules, make it IP based.
2012-03-08 14:50:46 +01:00
Marek Marczykowski
cae2672171
dom0/qvm-firewall: make firewall IP-based, not IF-based
...
Some VMs (especially HVM) can have more than one vif, so to not dupplicate
rules, make it IP based.
2012-03-08 14:40:00 +01:00
Marek Marczykowski
8c794d95e2
dom0/core: pause also stubdom when pausing HVM
2012-03-08 12:19:37 +01:00
Marek Marczykowski
07f560042c
dom0/core: use QubesVm.pause/unpause instead of xl directly
2012-03-08 12:04:47 +01:00
Marek Marczykowski
fc283e22c8
dom0/core: use QubesVm.pause/unpause instead of xl directly
2012-03-08 12:03:49 +01:00
Marek Marczykowski
fc573d0467
dom0/core: follow new __init__ API in QubesHVm
2012-03-08 11:57:47 +01:00
Marek Marczykowski
567229c104
dom0/core: follow new __init__ api in subclasses
2012-03-08 11:57:11 +01:00
Marek Marczykowski
63e19e1afa
dom0/core: follow new __init__ api in subclasses
2012-03-08 11:56:26 +01:00
Marek Marczykowski
de9f952a2e
dom0/core: more generic way to specify xen config template
2012-03-08 11:54:27 +01:00