reynir
/
albatross
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Commit Graph

  • 8e2b7cce46 Acquire create_lock in self_destruct killall Reynir Björnsson 2020-12-01 12:09:33 +0100
  • 472e42717e Implement killall waiting Reynir Björnsson 2020-11-30 15:26:29 +0100
  • 91ba8be8ab
         Merge pull request #47 from reynir/query-manifest Reynir Björnsson 2020-11-30 12:15:39 +0100
  • 353284bd49 Reword bridge detection error message query-manifest Reynir Björnsson 2020-11-30 11:54:42 +0100
  • b4a4a28634 Use ip link show to detect bridge Reynir Björnsson 2020-11-30 11:37:34 +0100
  • bc71e26756 check that bridges with the provided names exist before creating tap devices Hannes Mehnert 2020-11-27 22:40:15 +0100
  • 466e2d52b8 check manifest with provided device arguments Hannes Mehnert 2020-11-27 22:24:52 +0100
  • 5cad5b00ea Verify devices with manifest Reynir Björnsson 2020-11-26 14:43:06 +0100
  • c91ce00030 This repository moved to roburio organization Hannes Mehnert 2020-11-26 13:16:15 +0100
  • 33f7b6bcee
         Systemd socket activation (#43) Reynir Björnsson 2020-11-26 12:06:28 +0100
  • 930775b256
         Merge pull request #46 from reynir/pp-time Hannes Mehnert 2020-11-26 12:02:56 +0100
  • 3de997a7c1
         Linux /proc/ stats (#45) Reynir Björnsson 2020-11-26 12:02:21 +0100
  • 549a70b2a5 Add albatross-systemd package systemd-socket-gen Reynir Björnsson 2020-11-26 09:53:32 +0100
  • f7a3c4fdac Generate systemd.socket files Reynir Björnsson 2020-11-26 09:19:58 +0100
  • f280892894 Linux: Rename albatross_stat -> albatross_stats Reynir Björnsson 2020-11-26 09:16:37 +0100
  • e6eba35a97 Linux README: add comment about socket paths Reynir Björnsson 2020-11-26 08:09:24 +0100
  • 9f317f2638 Only add --systemd-socket-activation flag on Linux Reynir Björnsson 2020-11-26 07:40:09 +0100
  • 9afe691de2 Apply suggestions from code review Reynir Björnsson 2020-11-26 07:30:14 +0100
  • c3cd5bd5ff
         albatross_log.service: don't depend on albatross_console Reynir Björnsson 2020-11-26 07:29:04 +0100
  • f7e7c63c6f Fix pretty printing of time Reynir Björnsson 2020-11-25 20:03:14 +0100
  • 7dc2e33ef0 depend on conf-pkg-config for build (now that dune-configurator uses this for stats on linux Hannes Mehnert 2020-11-25 14:42:57 +0100
  • f597921b44
         Linux network stats (#44) Reynir Björnsson 2020-11-25 14:39:10 +0100
  • 362ff7b27a Linux: Fix socket permissions Reynir Björnsson 2020-11-24 14:41:56 +0100
  • 04ed59202b Set FD_CLOEXEC in sd_listen_fds Reynir Björnsson 2020-11-18 21:30:29 +0100
  • c67bafa063 Implement sd_listen_fds in OCaml Reynir Björnsson 2020-11-18 17:36:36 +0100
  • 96b2f39798 travis & cirrus: refresh CI setting (include 4.11) Hannes Mehnert 2020-11-14 22:29:04 +0100
  • f954955dd0
         Ergonomics (#41) Reynir Björnsson 2020-11-14 22:27:55 +0100
  • 1986ca2a1d travis: use ubuntu-lts Hannes Mehnert 2020-11-14 21:35:14 +0100
  • b2b9ddcdef Systemd services depend on their sockets Reynir Björnsson 2020-11-11 14:31:26 +0100
  • 99a992b3c4 AssertPathExists belongs under [Unit] Reynir Björnsson 2020-11-11 14:18:07 +0100
  • f79ed78a2b packaging/Linux/albatross_stat.service fix typo Reynir Björnsson 2020-11-11 14:11:25 +0100
  • d9c572109c Install .socket files Reynir Björnsson 2020-11-11 13:54:06 +0100
  • 0013e55d71 Add missing systemd.socket files Reynir Björnsson 2020-11-11 13:02:48 +0100
  • 0508465bba Refactor socket activation, use for all daemons Reynir Björnsson 2020-11-11 12:17:08 +0100
  • 0c29e2b90d Experimental systemd socket activation Reynir Björnsson 2020-11-11 11:41:07 +0100
  • 7030b1a3fa
         Merge pull request #40 from reynir/linux-packaging Hannes Mehnert 2020-11-10 15:46:28 +0100
  • 910c842448 Update Linux packaging Reynir Björnsson 2020-11-10 11:02:17 +0100
  • 3f36fe6382
         Merge pull request #38 from hannesm/old-logs Hannes Mehnert 2020-07-29 15:55:57 +0200
  • a5265c9a44 albatross_log: skip unknown entries Hannes Mehnert 2020-07-29 15:12:35 +0200
  • 1b1164166b
         Merge pull request #36 from hannesm/more Hannes Mehnert 2020-07-29 14:14:53 +0200
  • f7881e24e5 FreeBSD packaging: add albatross_client_inspect_dump to package Hannes Mehnert 2020-07-29 12:26:46 +0200
  • c7ee9dd908 vmm_asn: document versioning Hannes Mehnert 2020-07-14 18:32:25 +0200
  • da8b71cd2e bash is needed now (for parsexp 0.14) Hannes Mehnert 2020-07-05 21:28:59 +0200
  • c7b468fe09 new command: get which downloads a unikernel and dumps it into a file Hannes Mehnert 2020-07-05 21:27:44 +0200
  • 5adc2f0a8a vmm_asn: instead of potentially losing information, be honest and fail if requested to encode older versions of unikernel configuration Hannes Mehnert 2020-07-05 20:53:57 +0200
  • 125711ac6d further rng cleanups (remove deps from dune); albatross-client-inspect-dump which reads a state file (for cautious upgrades) Hannes Mehnert 2020-07-05 20:39:29 +0200
  • d93a683d94 tls: no need to initialize rng (tls.lwt does this for us) Hannes Mehnert 2020-06-23 20:03:59 +0200
  • c98ac0494d retry-connections now defaults to 0 Hannes Mehnert 2020-06-16 09:58:10 +0200
  • 21406965e7 require OCaml 4.08.0 since mirage-crypto depends on 4.08 Hannes Mehnert 2020-06-15 18:17:12 +0200
  • b07f09ba12 remove superfluous and outdated .ocamlinit Hannes Mehnert 2020-06-15 16:48:59 +0200
  • a4c4331b71 TLS applications: initialize RNG Hannes Mehnert 2020-06-15 16:32:26 +0200
  • ceafacbd2a require tls 1.3, avoid renegotiation (client certificate is now already encrypted) Hannes Mehnert 2020-05-19 21:07:39 +0200
  • ccf3cae68c albatrossd: style cleanups Hannes Mehnert 2020-05-19 21:00:37 +0200
  • 50958a32f5
         Albatrossd: --enable-stats and --retry-connections (#33) Magnus Skjegstad 2020-05-19 20:51:32 +0200
  • 604f3ec52e Bos.OS.Cmd.run_out needs to check the exit status (using Bos.OS.Cmd.success) Hannes Mehnert 2020-05-11 13:26:35 +0200
  • ab76e1ef89 metrics got released, no longer pin-depend Hannes Mehnert 2020-05-09 22:47:54 +0200
  • 0920ae142e on cirrus, watermark (dune subst) and build with release profile before packaging and uploading Hannes Mehnert 2020-05-02 22:08:59 +0200
  • 7cad9bd08d on linux, be a bit smarter which network device name to use Hannes Mehnert 2020-04-25 19:57:52 +0200
  • 0c5af23848 vmmd: unikernel_info no longer transfers the unikernel image Hannes Mehnert 2020-04-25 16:36:47 +0200
  • 1fbec307ab update FreeBSD in cirrus to 12.1 Hannes Mehnert 2020-04-25 16:42:39 +0200
  • 0932d06c41 client: provide exit code depending on failure Hannes Mehnert 2020-04-25 16:28:48 +0200
  • 9bc4d478d5 albatross_cli: fix docstring of dbdir location on linux Hannes Mehnert 2020-04-21 11:19:12 +0200
  • c0f093d39c add ISC license (fixes #13, re-requested by Poulpe on discord) Hannes Mehnert 2020-04-21 10:42:35 +0200
  • 4c9faf4262 adapt to x509 0.11.0 API changes Hannes Mehnert 2020-04-21 10:39:30 +0200
  • b7747a2547 linux tap device discovery: redirect stderr of run to /dev/null Hannes Mehnert 2020-04-21 11:00:21 +0200
  • 03c9948526 avoid brctl on Linux, use ip instead Hannes Mehnert 2020-04-09 17:02:17 +0200
  • be83686a22 Vmm_unix: fix ip tuntap command (provide tap name earlier), also set link up Hannes Mehnert 2020-04-03 17:29:46 +0200
  • 18728a7601 packaging/linux: cleanups of systemd scripts - console creates the run directories (albatross albatross/fifo albatross/util) -> log depends on console - albatross/fifo needs special permission (albatross_daemon creates fifo there, albatross_console needs to read them) - use /var/lib/albatross/albatross.log for the log file - only require root in albatross_daemon, use user albatross in albatross_console and albatross_log - defer albatross_stat for now Hannes Mehnert 2020-04-03 16:34:30 +0200
  • 59212bdca9 [ci skip] minor rewording Hannes Mehnert 2020-03-31 21:18:09 +0200
  • 14f861b945 stats: instead of executing the sysctl kinfo_proc twice (for retrieving kinfo_mem and rusage), only execute it once Hannes Mehnert 2020-03-30 18:42:50 +0200
  • 65693ea188 revise the "--net=yyy" argument to (optionally) contain a service:bridge Hannes Mehnert 2020-03-25 15:19:28 +0100
  • 19a817e26c cirrus: install pkgconf Hannes Mehnert 2020-03-13 18:37:12 +0100
  • a134218b64 use mirage-crypto and modern tls Hannes Mehnert 2020-03-13 16:24:52 +0100
  • 22ce1fbdbc
         Merge pull request #25 from hannesm/linux2 Hannes Mehnert 2020-02-20 21:01:52 +0100
  • da5ed22a14 compute uptime from now - started Hannes Mehnert 2019-11-29 22:39:21 +0100
  • ff59f05660 compatibility with x509 0.9.0 Hannes Mehnert 2020-02-16 16:33:19 +0100
  • eebecd4a96 adjust cirrus for new location of create_package.sh Hannes Mehnert 2019-11-27 11:28:38 +0100
  • 05ab18457b systemd services, based on ee49c6240aa2cf2c9dac47eff6c751ce8c17efb5 by @cfcs Hannes Mehnert 2019-11-21 13:29:22 +0100
  • 3dc21c037e move FreeBSD packaging to packaging/FreeBSD Hannes Mehnert 2019-11-21 13:07:23 +0100
  • eccdaeafda set umask in mkfifo Hannes Mehnert 2019-11-21 13:07:02 +0100
  • 34817a2090 notes about brctl, could potentially be replaced by ip Hannes Mehnert 2019-11-21 12:52:53 +0100
  • 6206e8681a make dbdir and tmpdir platform-specific and overwritable by all command line utilities Hannes Mehnert 2019-10-29 23:37:42 +0100
  • 56aa5545f8 basic cirrus on FreeBSD set Hannes Mehnert 2019-11-22 19:28:39 +0100
  • 2d26a56c0d
         Merge pull request #24 from hannesm/versioning Hannes Mehnert 2019-11-13 19:01:44 +0100
  • 13e731b78e albatross tls: re-allow root in leaf certificate (i.e. root) to fix log and info commands via tls Hannes Mehnert 2019-11-11 22:30:53 +0100
  • ff067255b0 albatrossd: acquire lock for restore Hannes Mehnert 2019-11-11 22:11:22 +0100
  • 784429744c versioning: revise it all, use a 'current' in Vmm_commands, all daemons reply with the received version on that particular stream Hannes Mehnert 2019-11-11 21:49:51 +0100
  • 365a569b25 albatross_ca: compare request vs my version, write mine, bump to AV4 Hannes Mehnert 2019-11-11 19:18:48 +0100
  • af04739575 albatross_ca: default to 1 day for leaf certificates, 1 year for intermediate policy_add certificates Hannes Mehnert 2019-11-10 23:23:42 +0100
  • b1272a75ec create from state in series, not parallel to avoid communication mishappenings Hannes Mehnert 2019-11-09 21:29:05 +0100
  • bcb3efcb23 canonical tag is vm (historical reasons), let's unify Hannes Mehnert 2019-11-09 20:52:39 +0100
  • 057dbbf147 revise naming freedom: multiple labels are allowed in certificate common names influx may drop topmost label (if --drop-label provided) Hannes Mehnert 2019-11-09 02:44:31 +0100
  • ec9f00b39a vmm_ring revise implementation Hannes Mehnert 2019-10-29 20:31:25 +0100
  • 8a113e5ce0 revise log and console subscription protocol, require either since or count Hannes Mehnert 2019-10-29 19:42:55 +0100
  • 90d1fd9d7d console: use Lwt_unix.openfile (RDONLY; NONBLOCK) to open the fifo, followed by Lwt_unix.wait_read (in read_console, called asynchronously in a fresh task) and only then convert to a Lwt_io.t (of_fd ~mode:Input) -- thanks to @cfcs Hannes Mehnert 2019-10-27 23:23:54 +0100
  • 82782363b8 Vmm_unix.check_commands : unit -> (unit, [> `Msg of string ]) result - which checks (platform-dependent) all required executables Vmm_unix.prepare/exec execute solo5-{spt/hvt} depending on the image type (solo5-elftool figures that out), use jsonm to parse output Vmm_unix: use ip on linux, no longer ifconfig Hannes Mehnert 2019-10-27 20:46:07 +0100
  • 01f6983325 cosmetics Hannes Mehnert 2019-10-27 19:47:37 +0100
  • 1d33c17b53 use a variant for uname result, not strings Hannes Mehnert 2019-10-27 19:42:52 +0100
  • e1239366e1 travis: use docker, test on 4.08 and 4.09 as well Hannes Mehnert 2019-10-15 18:50:46 +0200
  • 537c113a8a albatross_log: a read-only mode to read a log file Hannes Mehnert 2019-10-15 00:50:16 +0200