Joanna Rutkowska
0574daa2c5
vm: Load evtchn module in qubes_core
2011-07-02 13:12:53 +02:00
Joanna Rutkowska
62c1a9c780
Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core
2011-07-02 00:29:32 +02:00
Marek Marczykowski
c01485b19a
vm: Load u2mfn module
2011-07-02 00:24:20 +02:00
Joanna Rutkowska
3d1ca80d28
Update VM yum repos confs for Beta2
2011-07-01 22:56:11 +02:00
Marek Marczykowski
b6f036caf2
dom0+vm: Update VM kernel mechanism ( #242 )
...
Get kernel from global kernels dir (/var/lib/qubes/vm-kernels), not per-VM. Can
be configured by qvm-prefs (kernel parameter).
New tool: qvm-set-default-kernel
For backward compatibility kernel=None means kernel in VM dir (kernels subdir).
(possibly empty) modules.img should be created in it.
2011-06-30 01:07:47 +02:00
Marek Marczykowski
ae8a8229ee
vm: Check for TemplateVM updates ( #198 )
...
Just before dom0 updates check for TemplateVM updates and notify the user when
there are some.
2011-06-27 21:14:34 +02:00
Marek Marczykowski
a62644bb4f
vm: Run ntpd in FirewallVM as clock source for dom0 ( #198 )
2011-06-27 21:14:34 +02:00
Marek Marczykowski
f564a4d143
dom0+vm: Tools for downloading dom0 update by VM ( #198 )
...
Mainly 4 parts:
- scripts for providing rpmdb and yum repos to VM (choosen by qvm-set-updatevm)
- VM script for downloading updates (qubes_download_dom0_updates.sh)
- qfile-dom0-unpacker which receive updates, check signatures and place its in dom0 local yum repo
- qvm-dom0-upgrade which calls all of above and after all yum gpk-update-viewer
Besides qvm-dom0-upgrade, updates are checked every 6h and user is prompted if
want to download it. At dom0 side gpk-update-icon (disabled yet) should notice
new updates in "local" repo.
2011-06-22 00:44:48 +02:00
Marek Marczykowski
31f0308d45
dom0+vm: Trigger appmenus sync after yum transaction ( #45 ), NEW QREXEC COMMAND
...
After yum transaction (install/upgrade/remove),
yum-plugin-post-transaction-actions will execute script which trigger
qvm-sync-appmenus in dom0 (through qrexec).
THIS INTRODUCE NEW PREDEFINED COMMAND IN QREXEC
2011-06-12 01:46:24 +02:00
Marek Marczykowski
12971ec163
dom0: block-snapshot: add prepare and cleanup actions
...
"prepare" and "cleanup" actions can be used to setup device manually - not from
udev. This is used by qvm-revert-template-changes.
2011-06-10 18:34:17 +02:00
Marek Marczykowski
20fe69db75
dom0: block-snapshot: retrieve domain name from frontend-id only when no "domain" entry in xenstore
...
This enables compatibility with libxl AND xend.
2011-06-10 18:33:31 +02:00
Marek Marczykowski
6192e35419
dom0: block-snapshot: enable nullglob to not fail on snapshot/origin remove
...
Normally should not happen because all domains needs at least one snapshot
device, but in some rare situation can be helpful to cleanup stale devices.
2011-06-10 18:29:56 +02:00
Marek Marczykowski
68b5a71add
dom0: Use /var/run/xen-hotplug to store information needed for block devices cleanup.
...
Libxl removes xenstore entries before udev (+scripts) have chance to read it.
2011-06-09 14:06:24 +02:00
Marek Marczykowski
1c1e4362b0
Merge branch 'r1-beta1-fixes'
...
Conflicts:
dom0/qvm-core/qubes.py
version_dom0
version_vm
2011-05-24 00:20:39 +02:00
Joanna Rutkowska
76e7a52628
vm: add current-testing repo definitions
2011-05-23 21:39:48 +02:00
Timo Juhani Lindfors
8fac6139be
Ensure 'make clean' removes xenstore-watch
2011-05-13 14:16:10 +02:00
Marek Marczykowski
638473a364
Connect vif's to already running VMs on NetVM/ProxyVM startup ( #190 )
...
Also cleanup stale vifs using "xm network-detach ... -f"
Fix iptables rules to support not only first vif of VM
2011-04-23 03:05:27 +02:00
Marek Marczykowski
59da079f22
Configure VM network iface on attach (not only on boot) ( #190 )
2011-04-23 02:31:54 +02:00
Marek Marczykowski
0c0083c457
Allow normal user to read xenstore values
...
This is needed by qubes-session
2011-04-07 18:43:52 +02:00
Joanna Rutkowska
44cfc0d2ef
Use different repo files depending on %{dist} tag ( #197 )
2011-04-06 13:59:43 +02:00
Joanna Rutkowska
25704104a4
Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core
2011-04-06 10:40:51 +02:00
Marek Marczykowski
ae3092e741
Optimize iptables rules in NetVM
...
Move "state RELATED,ESTABLISHED" rule to the beginning.
2011-04-06 10:33:42 +02:00
Joanna Rutkowska
809ab3f950
Correct repo file for VMs
2011-04-05 23:53:44 +02:00
Joanna Rutkowska
21e0c9d3f7
commonvm: Update repo info, use local RPM keys
2011-04-04 11:27:48 +02:00
Joanna Rutkowska
8ac5329884
Fix stupid synatx error that prevented displaing error messages
2011-03-31 15:25:33 +02:00
Joanna Rutkowska
d9c9e802d4
Move nautilus scripts creation to qubes_core
...
qubes_core_appvm executes too early, when /home is still not symlinked to /rw/home.
2011-03-31 15:15:10 +02:00
Joanna Rutkowska
90423aae41
Use zenity instead of kdialog in appvm code
2011-03-31 13:26:41 +02:00
Tomasz Sterna
4b3d17c15a
Create needed NetworkManager.conf in netvm. #94
...
Also fixed qubes_fix_nm_conf.sh script.
2011-03-26 11:33:04 +01:00
Rafal Wojtczuk
81257fff75
Removed obsolete code, in appvm.
2011-03-24 17:13:21 +01:00
Rafal Wojtczuk
7fb123db92
Move execution of qrexec_agent to qubes_core
...
Previously it was in both qubes_core_appvm and qubes_core_netvm;
somehow counterintuitively, qubes_core_netvm executes on appvm, too. So
move it to a common place.
2011-03-23 11:34:01 +01:00
Rafal Wojtczuk
dfb499c025
Merge branch 'blockless' into spring-merge
...
Conflicts:
appvm/Makefile
appvm/qubes_core
netvm/qubes_core
rpm_spec/core-appvm.spec
rpm_spec/core-netvm.spec
2011-03-21 13:54:35 +01:00
Marek Marczykowski
2007e374c5
Use common image for swap and root-cow - volatile.img ( #118 )
...
This reduces xvd* devices count, so speeds up VM start.
Also swap-cow is no longer needed, so remove this additional dm-snapshot layer.
2011-03-18 22:15:32 -04:00
Marek Marczykowski
2b2e09881d
Autocommit template changes after template shutdown ( #96 )
2011-03-18 18:54:14 -04:00
Marek Marczykowski
dd2cd0dc2b
Indent fix
2011-03-18 18:24:55 -04:00
Rafal Wojtczuk
b170b5b5da
Bloody perror messes with errno; need to save errno.
2011-03-16 16:24:54 +01:00
Rafal Wojtczuk
01e0c73c61
In read_all()/write_all(), continue upon EINTR.
2011-03-16 12:58:40 +01:00
Marek Marczykowski
f25afe989c
Move xenstore-watch for VM from AppVM to common. Add to core-common.spec
2011-03-16 11:41:18 +01:00
Rafal Wojtczuk
237ce31f27
Handy gui_fatal() etc routines.
2011-03-15 13:00:12 +01:00
Rafal Wojtczuk
e1739269ff
Make sure read_all sets errno to 0 at EOF.
2011-03-15 10:36:50 +01:00
Rafal Wojtczuk
9d8e066a7f
Move copy_all_fd from dvm_file_editor.c to ioall.c
...
It is useful in e.g. qfile-agent-dvm.
2011-03-11 11:57:16 +01:00
Rafal Wojtczuk
af0bd7a9b4
Moved ioall.c file to "common"
2011-03-11 11:47:20 +01:00
Marek Marczykowski
c87b15ba2a
NetVM, AppVM, ProxyVM from single template - VM side
...
Modify VM packages to:
- do not conflicts
- starts services if its VM type need it
Added core-proxyvm (firewall) and core-commonvm (common parts) packages.
2011-03-11 01:38:04 +01:00
Marek Marczykowski
45f70b4e02
gitignore files - add build products
2011-03-06 14:06:24 +01:00
Marek Marczykowski
24ed4df11c
block-snapshot fixes
2011-03-06 14:06:23 +01:00
Marek Marczykowski
e0b50db2ee
Update TemplateVM with running AppVM: part 1
...
snapshot and origin device type for xen
2011-02-26 03:42:55 +01:00
Joanna Rutkowska
60b0eb28e8
Merge branch 'ticket4' of git://qubes-os.org/rafal/core
2010-09-17 17:30:36 +02:00
Rafal Wojtczuk
2c23edd1ee
Require NetworkManager >= 0.8.1-1
...
Unfortunately, config files layout changes with NM version; therefore
require >= 0.8.1-1.
This should also prevent NM from messing with VIF interfaces on suspend/resume.
2010-09-17 15:16:01 +02:00
Joanna Rutkowska
2a6356a6dd
Merge branch 'qmemman' of git://qubes-os.org/rafal/core
2010-09-13 15:05:13 +02:00
Rafal Wojtczuk
6d764ef50d
qmemman: save a syscall in meminfo-writer via use of "pread"
2010-09-10 14:53:41 +02:00
Rafal Wojtczuk
a2136c3d2b
Compile meminfo-writer with -O3
2010-09-10 11:38:06 +02:00
Rafal Wojtczuk
02b8e51341
qmemman: when a AppVM is low on memory, allow small adjustments
...
A small AppVM (say, with 100MB total) can go below prefmem, and
still not be assigned memory, because of the MIN_TOTAL_MEMORY_TRANSFER
threshold.
So, if AppVM is below prefmem, allow for smaller mem-sets.
2010-09-10 11:35:30 +02:00
Rafal Wojtczuk
555be9b857
qmemman: offload some processing to meminfo-writer
...
Make meminfo-writer compute used memory, and report to qmemman only if
it has changed significantly enough. As it is written in C, its code is
much faster that qmemman-server; also in the idle case, it saves on xenstore
communication overhead. Allows to send updates up to 10 times per second,
with CPU load on the VM below 0.1%.
2010-09-09 17:51:53 +02:00
Rafal Wojtczuk
23e11f5f6f
Switch to routed VM network (instead of bridging)
...
No headache from layer 2 attacks.
2010-09-06 17:07:42 +02:00
Rafal Wojtczuk
c0f47663c8
Unify dom0 and netvm sysconfig/iptables
...
Plus:
- dedicated chain for DNAT to nameservers
- prevent intervm networking. Can be conveniently overriden in necessary cases
by inserting ACCEPT clauses (per VM, probably) at the top of FORWARD
2010-09-06 15:10:01 +02:00
Rafal Wojtczuk
7ff498c43b
qmemman: make meminfo-writer a C program
2010-09-03 16:23:09 +02:00
Rafal Wojtczuk
ea58a5e299
Memory management across VMs, first release
2010-08-30 11:40:19 +02:00
Rafal Wojtczuk
a646ad46b1
Pathnames cleanup
...
Move internal scripts to /usr/lib/qubes plus a couple of similar.
2010-07-21 12:57:02 +02:00
Joanna Rutkowska
0f07b7c7e1
Fix serial console on VM to work on F13 (REQUIRES F13)
2010-06-18 01:45:27 +02:00
Joanna Rutkowska
5b5de14bc0
Make dom0, appvm, netvm use different qubes.repo
2010-06-18 01:41:10 +02:00
Rafal Wojtczuk
8af8b3986d
Use iptables-restore in qubes_setup_dnat_to_ns
2010-06-04 13:44:18 +02:00
Rafal Wojtczuk
7c99d39b4a
Moved files used in dom0 from netvm/ to common/
2010-05-31 13:15:17 +02:00
Rafal Wojtczuk
e9f3414ef6
Lock out root and user passwords; provide passwordless login on the serial console
2010-05-30 15:45:40 +02:00
Rafal Wojtczuk
940cae99d6
Add qubes.repo to all qubes-core-* rpms.
2010-05-30 15:45:40 +02:00