User Details
User Details
- User Since
- Jan 12 2022, 10:04 AM (152 w, 6 d)
Wed, Dec 11
Wed, Dec 11
clumens edited the content of TLS certificate setup.
clumens committed rP813e25d5134f: Refactor: libcrmcommon: pcmk__x509_enabled doesn't need an arg. (authored by clumens).
Refactor: libcrmcommon: pcmk__x509_enabled doesn't need an arg.
clumens committed rP4b90fa5e4057: Low: libcrmcommon: Set *tls = NULL in a few more locations. (authored by clumens).
Low: libcrmcommon: Set *tls = NULL in a few more locations.
clumens committed rPc3a5fcc11fb3: Feature: daemons: Enable TLS support for Pacemaker Remote nodes. (authored by clumens).
Feature: daemons: Enable TLS support for Pacemaker Remote nodes.
clumens committed rP5a548f4cd15c: Feature: liblrmd: Enable TLS support for Pacemaker Remote clients. (authored by clumens).
Feature: liblrmd: Enable TLS support for Pacemaker Remote clients.
clumens committed rPa924ccc3a3c4: Doc: sysconfig: Explain permissions needed on TLS-related files. (authored by clumens).
Doc: sysconfig: Explain permissions needed on TLS-related files.
clumens committed rP724b9906a52c: Feature: sysconfig: Document using certificates for remote nodes. (authored by clumens).
Feature: sysconfig: Document using certificates for remote nodes.
clumens committed rP2f0a0ca7de65: Doc: Pacemaker Explained: Add documentation for TLS options. (authored by clumens).
Doc: Pacemaker Explained: Add documentation for TLS options.
clumens committed rPd4c777a904f7: Refactor: libcrmcommon: Only set gnutls priorities when needed. (authored by clumens).
Refactor: libcrmcommon: Only set gnutls priorities when needed.
clumens edited the content of TLS certificate setup.
clumens edited the content of TLS certificate setup.
clumens edited the content of TLS certificate setup.
clumens created an object: TLS certificate setup.
Tue, Dec 10
Tue, Dec 10
clumens committed rPcbd069fb5462: Refactor: libcrmcommon: pcmk__x509_enabled doesn't need an arg. (authored by clumens).
Refactor: libcrmcommon: pcmk__x509_enabled doesn't need an arg.
clumens committed rP57a03bff39ce: Feature: daemons: Enable TLS support for Pacemaker Remote nodes. (authored by clumens).
Feature: daemons: Enable TLS support for Pacemaker Remote nodes.
clumens committed rP7add90ffb28e: Low: libcrmcommon: Set *tls = NULL in a few more locations. (authored by clumens).
Low: libcrmcommon: Set *tls = NULL in a few more locations.
clumens committed rPab92f64bdf3f: Feature: liblrmd: Enable TLS support for Pacemaker Remote clients. (authored by clumens).
Feature: liblrmd: Enable TLS support for Pacemaker Remote clients.
clumens committed rPa36d3087329d: Doc: sysconfig: Explain permissions needed on TLS-related files. (authored by clumens).
Doc: sysconfig: Explain permissions needed on TLS-related files.
clumens committed rPfbc2b12a44cc: Feature: sysconfig: Document using certificates for remote nodes. (authored by clumens).
Feature: sysconfig: Document using certificates for remote nodes.
clumens committed rPfada80d7b8dc: Doc: Pacemaker Explained: Add documentation for TLS options. (authored by clumens).
Doc: Pacemaker Explained: Add documentation for TLS options.
clumens committed rPb15d76b9d544: Refactor: libcrmcommon: Only set gnutls priorities when needed. (authored by clumens).
Refactor: libcrmcommon: Only set gnutls priorities when needed.
clumens committed rPfb7a6c4a1ec3: Refactor: libcib: Unindent code in cib_new. (authored by clumens).
Refactor: libcib: Unindent code in cib_new.
clumens committed rP71a71004103c: Refactor: libcib: Rearrange cib_remote_signon a bit. (authored by clumens).
Refactor: libcib: Rearrange cib_remote_signon a bit.
clumens committed rPb050f0155257: Refactor: libcrmcommon: Use our own logging for gnutls. (authored by clumens).
Refactor: libcrmcommon: Use our own logging for gnutls.
clumens committed rP49c4e87cf251: Refactor: libcrmcommon: Move tls priority detection into a function. (authored by clumens).
Refactor: libcrmcommon: Move tls priority detection into a function.
clumens committed rP72f51f51b7fd: Refactor: libs: Move tls-specific code from remote.c to tls.c. (authored by clumens).
Refactor: libs: Move tls-specific code from remote.c to tls.c.
clumens committed rPb59141d075db: Feature: libcrmcommon: Add pcmk__x509_enabled. (authored by clumens).
Feature: libcrmcommon: Add pcmk__x509_enabled.
clumens committed rPc9fc1ddee0f9: Feature: sysconfig: Add env settings needed for X509 authentication. (authored by clumens).
Feature: sysconfig: Add env settings needed for X509 authentication.
clumens committed rP5984f0f6d2f7: Refactor: libcrmcommon: Change the type of tls_session... (authored by clumens).
Refactor: libcrmcommon: Change the type of tls_session...
clumens committed rP08ddc29b0de1: Refactor: libcrmcommon: pcmk__new_tls_session can take a cert cred type. (authored by clumens).
Refactor: libcrmcommon: pcmk__new_tls_session can take a cert cred type.
Refactor: libcrmcommon: Add pcmk__tls_t.
clumens committed rP096b1ddfa85b: Refactor: libs: Use pcmk__tls_t in the client TLS code as well. (authored by clumens).
Refactor: libs: Use pcmk__tls_t in the client TLS code as well.
clumens committed rP9ab22792c134: Refactor: libcrmcommon: Deprecate crm_gnutls_global_init. (authored by clumens).
Refactor: libcrmcommon: Deprecate crm_gnutls_global_init.
clumens committed rP04131210a439: Refactor: libcrmcommon: Simplify args to pcmk__new_tls_session. (authored by clumens).
Refactor: libcrmcommon: Simplify args to pcmk__new_tls_session.
clumens committed rP59c08d106797: Feature: daemons: Set up X509 auth in based if enabled. (authored by clumens).
Feature: daemons: Set up X509 auth in based if enabled.
clumens committed rP2be15a9b855c: Feature: libcrmcommon: If the server supports certs, require them... (authored by clumens).
Feature: libcrmcommon: If the server supports certs, require them...
clumens committed rPaa316e38478e: Feature: libs: Log if a TLS certificate is close to expiration. (authored by clumens).
Feature: libs: Log if a TLS certificate is close to expiration.
clumens committed rPa0b3f9b4db27: Feature: libcib: Enable TLS certs for remote CIB operations. (authored by clumens).
Feature: libcib: Enable TLS certs for remote CIB operations.
clumens committed rP7b68062f60d9: Doc: Pacemaker Administration: Explain use of TLS certificates. (authored by clumens).
Doc: Pacemaker Administration: Explain use of TLS certificates.
Mon, Dec 9
Mon, Dec 9
clumens committed rP228c94fa5f29: Refactor: libcib: Unindent code in cib_new. (authored by clumens).
Refactor: libcib: Unindent code in cib_new.
clumens committed rP40f0c3da72b0: Refactor: libcib: Rearrange cib_remote_signon a bit. (authored by clumens).
Refactor: libcib: Rearrange cib_remote_signon a bit.
clumens committed rP7539fec5c1d6: Refactor: libcrmcommon: Use our own logging for gnutls. (authored by clumens).
Refactor: libcrmcommon: Use our own logging for gnutls.
clumens committed rP761957896cd2: Refactor: libcrmcommon: Move tls priority detection into a function. (authored by clumens).
Refactor: libcrmcommon: Move tls priority detection into a function.
clumens committed rP96eb4036f95f: Refactor: libcrmcommon: Change the type of tls_session... (authored by clumens).
Refactor: libcrmcommon: Change the type of tls_session...
clumens committed rPa141eec64a4d: Feature: sysconfig: Add env settings needed for X509 authentication. (authored by clumens).
Feature: sysconfig: Add env settings needed for X509 authentication.
clumens committed rP701eac03ccd8: Refactor: libs: Move tls-specific code from remote.c to tls.c. (authored by clumens).
Refactor: libs: Move tls-specific code from remote.c to tls.c.
clumens committed rP57ea342262f8: Feature: libcrmcommon: Add pcmk__x509_enabled. (authored by clumens).
Feature: libcrmcommon: Add pcmk__x509_enabled.
clumens committed rP95da79fcc8bf: Refactor: libcrmcommon: pcmk__new_tls_session can take a cert cred type. (authored by clumens).
Refactor: libcrmcommon: pcmk__new_tls_session can take a cert cred type.
Refactor: libcrmcommon: Add pcmk__tls_t.
clumens committed rP9d90dd7c0b57: Refactor: libs: Use pcmk__tls_t in the client TLS code as well. (authored by clumens).
Refactor: libs: Use pcmk__tls_t in the client TLS code as well.
clumens committed rPd065ccd4631a: Refactor: libcrmcommon: Deprecate crm_gnutls_global_init. (authored by clumens).
Refactor: libcrmcommon: Deprecate crm_gnutls_global_init.
clumens committed rP86efd5dd2dc8: Refactor: libcrmcommon: Simplify args to pcmk__new_tls_session. (authored by clumens).
Refactor: libcrmcommon: Simplify args to pcmk__new_tls_session.
clumens committed rPaae93cbcb9c8: Feature: daemons: Set up X509 auth in based if enabled. (authored by clumens).
Feature: daemons: Set up X509 auth in based if enabled.
clumens committed rP0ff89a84b788: Feature: libcrmcommon: If the server supports certs, require them... (authored by clumens).
Feature: libcrmcommon: If the server supports certs, require them...
clumens committed rPafdb38a7b7b9: Feature: libs: Log if a TLS certificate is close to expiration. (authored by clumens).
Feature: libs: Log if a TLS certificate is close to expiration.
clumens committed rPd4b99f10e845: Feature: libcib: Enable TLS certs for remote CIB operations. (authored by clumens).
Feature: libcib: Enable TLS certs for remote CIB operations.
clumens committed rP20c6c4b17bbd: Doc: Pacemaker Administration: Explain use of TLS certificates. (authored by clumens).
Doc: Pacemaker Administration: Explain use of TLS certificates.
Thu, Dec 5
Thu, Dec 5
clumens committed rPf27e4ab5c1e7: Test: cts-scheduler: Remove sed needed for backwards compat. (authored by clumens).
Test: cts-scheduler: Remove sed needed for backwards compat.
Wed, Dec 4
Wed, Dec 4
clumens committed rP810b24931fc2: Test: cts-scheduler: Remove sed needed for backwards compat. (authored by clumens).
Test: cts-scheduler: Remove sed needed for backwards compat.
Tue, Dec 3
Tue, Dec 3
clumens committed rP426be6d7ee79: Build: rpm: Ignore the lib-package-without-%mklibname rpmlint error (authored by clumens).
Build: rpm: Ignore the lib-package-without-%mklibname rpmlint error
clumens committed rP1285c8bdd481: Build: rpm: Ignore the lib-package-without-%mklibname rpmlint error (authored by clumens).
Build: rpm: Ignore the lib-package-without-%mklibname rpmlint error
clumens committed rB9c4f8abdd8cb: Refactor: Remove global booth_conf variable from notify_client. (authored by clumens).
Refactor: Remove global booth_conf variable from notify_client.
clumens committed rB6f8a938be4f9: Refactor: Remove global booth_conf variable from list_peers. (authored by clumens).
Refactor: Remove global booth_conf variable from list_peers.
clumens committed rBcb1c9fa216c0: Refactor: Remove global booth_conf variable from network functions. (authored by clumens).
Refactor: Remove global booth_conf variable from network functions.
Mon, Dec 2
Mon, Dec 2
clumens committed rPe7e916339ef3: Build: rpm: Ignore the lib-package-without-%mklibname rpmlint error (authored by clumens).
Build: rpm: Ignore the lib-package-without-%mklibname rpmlint error
Wed, Nov 20
Wed, Nov 20
clumens added a comment to T912: Fix or drop COPR builds.
My guess as to why this stopped working is that the API key you use to link github and copr is only good for 180 days and then must be regenerated.
clumens committed rP0b0b2912c438: Build: release.mk: Fix the fallback setting of VERSION. (authored by clumens).
Build: release.mk: Fix the fallback setting of VERSION.
clumens committed rPb14d55393896: Build: rpm: Define a fallback value for GIT. (authored by clumens).
Build: rpm: Define a fallback value for GIT.
Build: copr: Fix the copr Makefile.
clumens committed rPd1d966d0ac9b: Refactor: libcrmcommon: Guard function bodies in procfs.c. (authored by clumens).
Refactor: libcrmcommon: Guard function bodies in procfs.c.
clumens committed rP708b0fe35bfa: Refactor: libcrmcommon: Move opening /proc/self/fd into a function. (authored by clumens).
Refactor: libcrmcommon: Move opening /proc/self/fd into a function.
clumens committed rP7c9c6427ea8f: Refactor: libcrmcommon: Move sysrq_trigger into procfs.c. (authored by clumens).
Refactor: libcrmcommon: Move sysrq_trigger into procfs.c.
clumens committed rP63dfbe861be6: Refactor: libcrmcommon: Remove guards in pcmk__locate_sbd. (authored by clumens).
Refactor: libcrmcommon: Remove guards in pcmk__locate_sbd.
clumens committed rP31f8d361bd78: Refactor: libcrmcommon: Remove guards in panic_local_nonroot. (authored by clumens).
Refactor: libcrmcommon: Remove guards in panic_local_nonroot.
clumens committed rPf05c27c0ea84: Refactor: daemons: Pass the server we're throttling as an argument. (authored by clumens).
Refactor: daemons: Pass the server we're throttling as an argument.
clumens committed rPb7bc6a65d33c: Refactor: daemons: Use true/false instead of TRUE/FALSE... (authored by clumens).
Refactor: daemons: Use true/false instead of TRUE/FALSE...
clumens committed rP015fa188b0af: Refactor: daemons: Improve code formatting in throttle functions. (authored by clumens).
Refactor: daemons: Improve code formatting in throttle functions.
clumens committed rPa0cc12d5367e: Refactor: daemons: Move throttling code into libcrmcommon (authored by clumens).
Refactor: daemons: Move throttling code into libcrmcommon
Nov 14 2024
Nov 14 2024
clumens committed rPdc8ca7ade46d: Refactor: libcrmcommon: Add pcmk__create_timer. (authored by clumens).
Refactor: libcrmcommon: Add pcmk__create_timer.
Refactor: Use pcmk__create_timer...
clumens committed rPa7064250d774: Refactor: libcrmcommon: Add pcmk__timeout_ms2s. (authored by clumens).
Refactor: libcrmcommon: Add pcmk__timeout_ms2s.
clumens committed rP577149b3b151: Refactor: Use pcmk__timeout_ms2s where possible. (authored by clumens).
Refactor: Use pcmk__timeout_ms2s where possible.
Nov 13 2024
Nov 13 2024
clumens committed rPe9c035a5fe19: Refactor: daemons: Get rid of an implicit fallthrough. (authored by clumens).
Refactor: daemons: Get rid of an implicit fallthrough.
Nov 12 2024
Nov 12 2024
clumens committed rPdfa8f13145c6: Fix: python: Always use generated corosync config in regression tests (authored by clumens).
Fix: python: Always use generated corosync config in regression tests
clumens committed rPa07666a8112e: Refactor: python: Fix pylint & pyflake warnings in isoparse. (authored by clumens).
Refactor: python: Fix pylint & pyflake warnings in isoparse.
clumens added a comment to T914: Fix log detection in cts-lab.
Looking at that old CTS code sure is unpleasant.
clumens added a comment to T912: Fix or drop COPR builds.
I can see how this might be handy to someone, but it's never come up for me.
clumens changed the status of T908: Always use generated Corosync config in regression tests from Open to WIP.
Nov 6 2024
Nov 6 2024
clumens committed rP1ae0a57ccde3: Refactor: liblrmd: Minor code cleanups to lrmd_send_command. (authored by clumens).
Refactor: liblrmd: Minor code cleanups to lrmd_send_command.
clumens committed rP3bc3c3dc71fe: Refactor: liblrmd: lrmd_send_command should take a bool. (authored by clumens).
Refactor: liblrmd: lrmd_send_command should take a bool.
clumens committed rPe13d554403e2: Refactor: liblrmd: Add lrmd_handshake_hello_msg. (authored by clumens).
Refactor: liblrmd: Add lrmd_handshake_hello_msg.
clumens committed rPf4cd6e6b2107: Refactor: liblrmd: Rename do_handshake to do_api_handshake. (authored by clumens).
Refactor: liblrmd: Rename do_handshake to do_api_handshake.
clumens committed rP45a665ef3ef7: Refactor: liblrmd: Add process_lrmd_handshake_reply. (authored by clumens).
Refactor: liblrmd: Add process_lrmd_handshake_reply.
clumens committed rP10eda6aec3da: Refactor: liblrmd: Change lrmd_handshake return value. (authored by clumens).
Refactor: liblrmd: Change lrmd_handshake return value.
clumens committed rP24da89aba543: Refactor: liblrmd: Perform the API handshake asynchronously. (authored by clumens).
Refactor: liblrmd: Perform the API handshake asynchronously.
Nov 4 2024
Nov 4 2024
Oct 31 2024
Oct 31 2024
clumens raised the priority of T901: Use asynchronous communication for liblrmd commands with replies from Low to High.