etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,504 Commits 324 Branches 325 Tags 943 MiB
Commit Graph

5212 Commits

Author SHA1 Message Date
Vijayendra Bhamidipati f1ec4fddd3 CS-15217: Security: Malicious user is able to get the size of the cloud by enumerating IDs 
Description:

	As part of the fix for Bug CS-13127, a new overloaded function,
	addProxyObject() was added to facilitate transparent db id to
	uuid conversions when db IDs were added to exceptions that were
	thrown in the Cloudstack mgmt server code. However, it turns out
	that there are quite many db IDs still in the code that are
	being directly embedded in the String message that is passed
	during exception creation.

	In this commit, we modify the default constructor of
	InvalidParameterValueException so that it takes a second
	argument of type List<IdentityProxy>. This will help developers
	see that there is a second parameter required, and make them
	look into what that parameter is about. Hopefully, this will
	stop db IDs from being embedded into the exception message.

	The parameter can be set to null though, since there are many
	places in the code that don't embed any DB IDs in the exception.

	This is still a WIP, so the older default constructor for
	InvalidParameterValueException has not been removed yet. When
	all instances of throw new InvalidParameterValueException()
	have been moved over to the new default constructor, the old
	one will be removed, else compilation will break. The reason
	for having to do this in batches is that there are way too
	many places in the code that throw exceptions, and they all
	cannot be covered in a single commit without it taking much
	time.

	In following commits, all other exceptions will be changed
	in the same way as InvalidParameterValueException.
 2012-07-05 16:48:36 -07:00
Alena Prokharchyk e6d73fb114 VPC: added dns1/dns2 + networkDomain to the list of bootload args passed on VPC VR start 2012-07-05 10:32:51 -07:00
Alena Prokharchyk 931c3eb78e VPC: removed NetworkACL interface; added getTrafficType() to Firewall 2012-07-05 10:22:49 -07:00
Deepti Dohare 892ee23ca5 Merge branch '3.0.x' of ssh://git.cloud.com/var/lib/git/cloudstack-oss into 3.0.x 2012-07-05 11:32:24 +05:30
Pranav Saxena 922d254b72 CS-13376- Vm is stuck in Stopping state when MS is rebooted after the stop command was issued, but answer wasn't recieved from the backend yet 2012-07-05 11:29:01 +05:30
Deepti Dohare 7d6db010ac CS-15429: Create Instance should fail if creating instance results in exceeding volume resource limit for domain-admin or user accounts 
Reviewed-by: devdeep.singh@citrix.com
Change: Adding a check for diskOfferingId
 2012-07-05 11:27:48 +05:30
Pranav Saxena c6448d0e8e CS-13376- Vm is stuck in Stopping state when MS is rebooted after the stop command was issued, but answer wasn't recieved from the backend yet 2012-07-05 11:24:24 +05:30
Pranav Saxena a4740b314f CS-13376: Vm is stuck in Stopping state when MS is rebooted after the stop command was issued, but answer wasn't recieved from the backend yet..removing trailing whitespaces in the code 2012-07-04 22:04:20 +05:30
Pranav Saxena 75026053bc CS-13376: Vm is stuck in Stopping state when MS is rebooted after the stop command was issued, but answer wasn't recieved from the backend yet 2012-07-04 21:51:32 +05:30
Alena Prokharchyk 1ac1bcb2f6 VPC: createLB rule - removed duplicated check for ip services when createLB rule 2012-07-03 17:34:49 -07:00
Alena Prokharchyk 3383c79452 VPC: added zoneName to the VPC api response 2012-07-03 17:14:07 -07:00
Alena Prokharchyk 3a56e3c55c VPC: CS-15426 - In Basic zone always pass control nic when prepare nics for the VR 2012-07-03 17:10:12 -07:00
Alena Prokharchyk 5a175e871c VPC: CS-15355 - fixed router when deployVm in Basic zone 2012-07-03 17:10:12 -07:00
Alena Prokharchyk a899391b6e VPC: fixed response tag for VpcRespnse 2012-07-03 16:12:37 -07:00
Vijayendra Bhamidipati ca5a53ce4d Merge branch '3.0.x' of ssh://git.cloud.com/var/lib/git/cloudstack-oss into 3.0.x 2012-07-03 15:43:35 -07:00
Vijayendra Bhamidipati e71732babc CS-14952: Nexus vSwitch: vCenter IP Address and DataCenter information is not present in the "virtual_supervisor_module" table. VSwitch Crendentials are not encrypted. 
Description:

	Qualifying the VSM password stored in virtual_supervisor_module
	as encryptable. The encryption/decryption is transparently done
	by the cloudstack DAO layer.
 2012-07-03 15:41:42 -07:00
Alena Prokharchyk 9f6d03b87b VPC: added "forVpc" parameter to listNetworkOfferings command. If true, the offeirng can be used for vpc networks only 2012-07-03 15:37:07 -07:00
Alena Prokharchyk 1011dfd31c Resource tags: 1) Remove tag records when correspdonding cloudStack object gets removed 
2) added "tags" request parameter to the banch of list* Api commands (listVirtualMachines, listSnapshots - all commands are listed in the resource tags functional spec)
 2012-07-03 14:47:07 -07:00
Vijayendra Bhamidipati f5f356c150 Merge branch '3.0.x' of ssh://git.cloud.com/var/lib/git/cloudstack-oss into 3.0.x 2012-07-03 14:01:07 -07:00
Vijayendra Bhamidipati 9e3330374f CS-15151: Cluster_details table stores Vcenter Cluster credentials in clear text 
Description:

	Encrypting password values before they're written out to
	the cluster_details db, and decrypting them when reading
	in the values from the db.
 2012-07-03 13:47:29 -07:00
anthony 2742c50484 CS-15385 : fix vm start in basic zone 2012-07-03 11:30:59 -07:00
Alena Prokharchyk 1e67de0ac5 VPC: added missing FirewallService to the VR provider 2012-07-03 09:34:45 -07:00
Koushik Das a8c1568b37 Fix for CS-15345 
During account cleanup, associated network is accessed without checking whether it is present or not. Added a check to use it only when present.
 2012-07-03 18:52:36 +05:30
Alena Prokharchyk 6af13737fa VPC: corrected the name for PublicIp interface (mistakenly renamed it as a part of previous checkin) 2012-07-02 17:31:47 -07:00
Alena Prokharchyk e3ca32af2a VPC: remove network ACLs from VPC VR when shutdown guest network 2012-07-02 16:44:43 -07:00
Sheng Yang c5cdd6947f CS-6840: Fix 0 id returned by createVpnConnection 2012-07-02 16:15:43 -07:00
Jason Bausewein b071260878 CS-15274: Fix NPE on CreateVlanIpRangeCmd() 
Signed-off-by: Sheng Yang <sheng.yang@citrix.com>
 2012-07-02 15:08:09 -07:00
Alena Prokharchyk 481f59df3b VPC: multiple fixes: 
* Separate service for NetworkACL - "NetworkACL" service
* allow having just one network supporting LB in the VPC
* perform check against VPC when upgrade network to the new network offering (the same set of checks when you add new network to the VPC)
 2012-07-02 14:14:34 -07:00
Jessica Wang 1791c7533b cloudstack 3.0 API - listVpnConnections API - add gatewayIp, guestCidrList,ipsecPsk, ikePolicy, espPolicy, lifetime property (get it from customerGateway object). 2012-07-02 13:39:34 -07:00
Alena Prokharchyk 4415c67604 VPC: createPrivateGateway - consists of plug nic + ipassoc (no setsource nat is needed) 2012-07-02 12:58:30 -07:00
Jessica Wang 60da16fe8b cloudstack 3.0 API - listVpnConnections API - add publicip property (get it from vpnGateway object). 2012-07-02 10:24:10 -07:00
Deepti Dohare b09e43f977 CS-15300 Limits on domain admin accounts 
Reviewed-by: devdeep.singh@citrix.com

change: fix for listResourceLimits
 2012-07-02 20:13:06 +05:30
Sheng Yang 618d2541c8 CS-6840: Add status checking for site 2 site VPN 2012-06-29 18:58:52 -07:00
anthony 0f06bc6643 VPC : network usage works in VPC 2012-06-29 17:33:17 -07:00
Alena Prokharchyk 49d8b650e9 VPC: listPrivateGateways command is available for regular user too (he needs to know the gatewayId for the static route creation) 2012-06-29 15:17:17 -07:00
Jessica Wang e07ec3cd2c cloudstack 3.0: (1) API - CreateVpnConnection API, ListVpnConnections API: set object name for API response. 
(2) UI - Add site-to-site VPN dialog - call CreateVpnConnection API after CreateVpnCustomerGateway API returns success.
 2012-06-29 14:55:26 -07:00
Jessica Wang 6cf45ad29b cloudstack 3.0 API: CreateVpnCustomerGateway API, ListVpnCustomerGateways API: set object name for API response. 2012-06-29 14:40:00 -07:00
Alena Prokharchyk 07ef43bc84 VPC: added vpccidr to the list of VPC router bootload args 2012-06-29 13:59:49 -07:00
Alena Prokharchyk 37f29ccb11 VPC: set networkId to be null for IP address when the last PF/LB rule is removed for it and the IP belongs to VPC 2012-06-29 13:46:20 -07:00
Deepti Dohare 3f61f42a7e Fix for CS-15300 Limits on domain admin accounts 2012-06-29 23:53:32 +05:30
Jessica Wang d922b99c64 cloudstack 3.0 API: CreateVpnGateway API, ListVpnGateways API: set object name for API response. 2012-06-29 11:05:10 -07:00
kishan 077ca1489c bug CS-15389: Added prepareStop to Virtualmachine manager and moved network usage collection into prepareStop of VR manager 2012-06-28 18:07:47 -07:00
Alena Prokharchyk 7a5d3f365d Fixed unittest 2012-06-28 17:21:42 -07:00
Alena Prokharchyk e6383fc845 VPC: when add guest network to VPC, verify that the list of network services is within the list of services supported by VPC offering 2012-06-28 17:13:39 -07:00
kishan c4cf065a3f bug CS-15221: Encrypt config value before changing category to Hidden. Regression due to af1fc1cf5d361cb6d43e0107a644c42f645a0ccc 
status CS-15221: resolved fixed
reviewed-by: Nitin
 2012-06-28 15:54:45 -07:00
kishan fc44c5203e bug CS-15168: Use cagetory from DB instead of Config.java, set category to Hidden during upgrade if they are not already 
status CS-15168: resolved fixed
reviewed-by: Nitin
 2012-06-28 15:49:53 -07:00
Sheng Yang 66a918f51a CS-6840: List all objects without require parameter 2012-06-28 15:25:15 -07:00
Alena Prokharchyk ceb4445166 VPC: createPF/createLBrule: 1) don't allow to pass openFirewall=true 2) when no openFirewall is passed in, defaulted to false if the public ip belongs to VPC 2012-06-28 14:19:14 -07:00
Alena Prokharchyk 90b96642a7 Static route can be created for generic VpcGateway now, not just Private gateway 2012-06-28 13:14:54 -07:00
Sheng Yang 23c96451a7 CS-6840: Add hypervisor commands for site-to-site vpn 2012-06-27 19:06:32 -07:00