The goal of this is to expand the move-volume API endpoint to make it
possible to move a container volume / mountpoint to another container.
For unused volumes, the API parameters have been changed to allow them
as well. This means, additional checks had to be introduced to avoid
migration of an u
Am 05.11.21 um 14:12 schrieb Thomas Lamprecht:
On 05.11.21 14:06, Fabian Ebner wrote:
Since commit 277d33454f77ec1d1e0bc04e37621e4dd2424b67 in pve-qemu,
smm=off is no longer the default, but with SeaBIOS and serial display,
this can lead to a boot loop.
Reported in the community forum [0] and r
with 'get_node_kv', we get a hash which contains the value for
all nodes in the cluster (with the nodename as key), so we have to use
the value from the hash corresponding to our nodename.
also the 'str' property is inside the 'version' hash
Signed-off-by: Dominik Csapak
---
i noticed on my ceph
On 06.10.21 10:32, Alexandre Derumier wrote:
> currently, when veth or tap interfaces are plugged to bridge,
> an igmp v3 report is broadcasted to the network, with the
> bridge mac adddress.
but this disables it for all, couldn't there be repercussions for people relying
on multicast?
Should it
On 05.10.21 13:28, Dominik Csapak wrote:
> Dominik Csapak (7):
> ui: lxc/MPEdit: add updateVMConfig
> ui: lxc/MPEdit: fire diskidchange event
> ui: lxc/MPEdit: add selectFree toggle
> ui: add MultiDiskPanel
> ui: add lxc/MultiMPEdit and use in lxc/CreateWizard
> ui: add qemu/MultiHDEdit
On 05.11.21 14:06, Fabian Ebner wrote:
> Since commit 277d33454f77ec1d1e0bc04e37621e4dd2424b67 in pve-qemu,
> smm=off is no longer the default, but with SeaBIOS and serial display,
> this can lead to a boot loop.
>
> Reported in the community forum [0] and reproduced with a Debian 10
> VM.
>
> [0
Since commit 277d33454f77ec1d1e0bc04e37621e4dd2424b67 in pve-qemu,
smm=off is no longer the default, but with SeaBIOS and serial display,
this can lead to a boot loop.
Reported in the community forum [0] and reproduced with a Debian 10
VM.
[0]:
https://forum.proxmox.com/threads/pve-7-0-all-vms-w
remote migration uses a websocket connection to a task worker running on
the target node instead of commands via SSH to control the migration.
this websocket tunnel is started earlier than the SSH tunnel, and allows
adding UNIX-socket forwarding over additional websocket connections
on-demand.
the
the following two endpoints are used for migration on the remote side
POST /nodes/NODE/qemu/VMID/mtunnel
which creates and locks an empty VM config, and spawns the main qmtunnel
worker which binds to a VM-specific UNIX socket.
this worker handles JSON-encoded migration commands coming in via thi
no semantic changes intended, except for:
- no longer passing the main migration UNIX socket to SSH twice for
forwarding
- dropping the 'unix:' prefix in start_remote_tunnel's timeout error message
Signed-off-by: Fabian Grünbichler
---
PVE/QemuMigrate.pm | 158 ---
to re-use them for incoming remote migrations.
Signed-off-by: Fabian Grünbichler
---
PVE/API2/Qemu.pm | 26 ++
1 file changed, 14 insertions(+), 12 deletions(-)
diff --git a/PVE/API2/Qemu.pm b/PVE/API2/Qemu.pm
index b479811..c290a42 100644
--- a/PVE/API2/Qemu.pm
+++ b/PV
Signed-off-by: Fabian Grünbichler
---
Notes:
the checks currently done before the actual migration worker is
forked could be either moved to the client calling this (that then
makes the required API calls) or extracted into a precond API call
like for regular migration.
f
Signed-off-by: Fabian Grünbichler
---
Makefile | 44 ++
debian/changelog | 5
debian/control | 57
debian/copyright | 16 +
debian/debcargo.toml | 13 ++
5 files change
more consistent with the other options/formats like pve-storage-id
Signed-off-by: Fabian Grünbichler
---
Notes:
v2: new
this breaks older qemu-server without the patch adapting to the new name
src/PVE/JSONSchema.pm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --
Signed-off-by: Fabian Grünbichler
---
src/PVE/AccessControl.pm | 2 ++
1 file changed, 2 insertions(+)
diff --git a/src/PVE/AccessControl.pm b/src/PVE/AccessControl.pm
index dfd3af5..a80ed74 100644
--- a/src/PVE/AccessControl.pm
+++ b/src/PVE/AccessControl.pm
@@ -457,6 +457,8 @@ my $assemble_sho
in case we have no explicit fingerprint, we use openssl's regular "PEER"
verification. if we have a fingerprint, we ignore openssl altogether and
just verify the fingerprint of the presented leaf certificate.
Signed-off-by: Fabian Grünbichler
---
Cargo.toml | 1 +
src/main.rs | 47
Signed-off-by: Fabian Grünbichler
---
.gitignore| 1 +
.cargo/config | 5 +
Cargo.toml| 11 +++
3 files changed, 17 insertions(+)
create mode 100644 .gitignore
create mode 100644 .cargo/config
create mode 100644 Cargo.toml
diff --git a/.gitignore b/.gitignore
new file mo
previously, this was only used for the server side handling of web
sockets. by making the mask part of the WebSocket struct and making some
of the fns associated, we can re-use this for client-side connections
such as in proxmox-websocket-tunnel.
Signed-off-by: Fabian Grünbichler
---
Notes:
else this fails if we check 'boot' before the device was put into
the config or pending section.
Signed-off-by: Fabian Grünbichler
---
Notes:
as happens when doing a remote migration and the full config is passed
through
update_vm_api
PVE/API2/Qemu.pm | 2 +-
1 file changed, 1 inserti
Signed-off-by: Fabian Grünbichler
---
Notes:
requires pve-common with pve-bridge-id
PVE/QemuServer.pm | 7 ++-
1 file changed, 2 insertions(+), 5 deletions(-)
diff --git a/PVE/QemuServer.pm b/PVE/QemuServer.pm
index 23e7b08..de8c1bb 100644
--- a/PVE/QemuServer.pm
+++ b/PVE/QemuServer.p
since we are going to reuse the same mechanism/code for network bridge
mapping.
Signed-off-by: Fabian Grünbichler
---
PVE/QemuMigrate.pm | 6 +++---
PVE/QemuServer.pm | 6 --
2 files changed, 7 insertions(+), 5 deletions(-)
diff --git a/PVE/QemuMigrate.pm b/PVE/QemuMigrate.pm
index ae3eaf1
the websocket tunnel helper accepts control commands (encoded as
single-line JSON) on stdin, and prints responses on stdout.
the following commands are available:
- "connect" a 'control' tunnel via a websocket
- "forward" a local unix socket to a remote socket via a websocket
-- if requested, this
we only want to use an explicitly provided migration network, not one
for the local cluster.
Signed-off-by: Fabian Grünbichler
---
src/PVE/AbstractMigrate.pm | 51 +++---
1 file changed, 31 insertions(+), 20 deletions(-)
diff --git a/src/PVE/AbstractMigrate.pm b/
Signed-off-by: Fabian Grünbichler
---
Notes:
v2: new
requires bumped dependency on pve-common with renaming patch
PVE/QemuServer.pm | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/PVE/QemuServer.pm b/PVE/QemuServer.pm
index 763c412..a0e1809 100644
--- a/PVE/Qemu
for proxied requests, we usually tear down the proxy connection
immediately when closing the source connection. this is not the correct
course of action for bulk one-way data streams that are proxied, where
the source connection might be closed, but the proxy connection might
still have data in the
it's needed for tests to succeed.
Signed-off-by: Fabian Grünbichler
---
debian/control | 1 +
1 file changed, 1 insertion(+)
diff --git a/debian/control b/debian/control
index 8349738..8032ae5 100644
--- a/debian/control
+++ b/debian/control
@@ -20,6 +20,7 @@ Build-Depends: debhelper (>= 12~),
for usage in remote migration/replication.
Signed-off-by: Fabian Grünbichler
---
src/PVE/JSONSchema.pm | 27 +++
1 file changed, 27 insertions(+)
diff --git a/src/PVE/JSONSchema.pm b/src/PVE/JSONSchema.pm
index 09c8fc0..38be3f8 100644
--- a/src/PVE/JSONSchema.pm
+++ b/sr
for re-use in qemu-server/pve-container, which already have this option
duplicated. the '-pair' is needed for remote migration, but can also be
a nice addition to regular intra-cluster migration to lift the
restriction of having identically named bridges.
Signed-off-by: Fabian Grünbichler
---
No
just like VNC ticket, but different prefix to prevent confusion.
Signed-off-by: Fabian Grünbichler
---
src/PVE/AccessControl.pm | 50 ++--
1 file changed, 38 insertions(+), 12 deletions(-)
diff --git a/src/PVE/AccessControl.pm b/src/PVE/AccessControl.pm
index
this series adds remote migration for VMs. there's still some of
TODOs/FIXMEs/stuff that requires discussion left, but this should
hopefully be possible to apply with minor modifications and lots of
future extensions.
both live and offline migration including NBD and storage-migrated disks
should
On 22.10.21 11:07, Fabian Ebner wrote:
> so that users see when something went wrong.
>
> Don't mask the grid directly, but rather only its view so that the
> title bar can be used for selecting another storage during load.
>
> Reported in the community forum:
> https://forum.proxmox.com/threads/
On 25.10.21 16:01, Dominik Csapak wrote:
> by optionally saving the name of the cephfs
>
> Signed-off-by: Dominik Csapak
> ---
> PVE/Storage/CephFSPlugin.pm | 8
> 1 file changed, 8 insertions(+)
>
>
applied, thanks!
___
pve-devel mailing
Signed-off-by: Dietmar Maurer
---
Cargo.toml | 15 +++
src/backup.rs | 11 +++
src/commands.rs | 15 +--
src/lib.rs | 11 ++-
src/restore.rs | 13 ++---
src/shared_cache.rs | 2 +-
src/upload_queue.rs | 6 --
7
Signed-off-by: Fabian Ebner
---
PVE/Storage/LvmThinPlugin.pm | 16
1 file changed, 4 insertions(+), 12 deletions(-)
diff --git a/PVE/Storage/LvmThinPlugin.pm b/PVE/Storage/LvmThinPlugin.pm
index 4ba6f90..34e57b2 100644
--- a/PVE/Storage/LvmThinPlugin.pm
+++ b/PVE/Storage/LvmThin
There are cases where autoactivation can fail, as reported in the
community forum [0]. And it could also be that a volume was
deactivated by something outside of our control.
It doesn't seem strictly necessary to activate the thin pool itself
(creating/removing/activating LVs within the pool still
Signed-off-by: Alexandre Derumier
---
Makefile | 4 ++--
debian/changelog | 6 ++
debian/control | 56
3 files changed, 36 insertions(+), 30 deletions(-)
diff --git a/Makefile b/Makefile
index dcd7d74..7123516 100644
--- a/Makefile
Signed-off-by: Alexandre Derumier
---
...e-ax_python.m4-to-hardcode-python3.9.patch | 25
.../patches/pve/0001-enable-bgp-daemon.patch | 8 +--
...on-for-RT-auto-derivation-to-force-A.patch | 59 ++-
debian/patches/series | 1 -
4 files changed,
This patch series update frr to 8.0.1.
I'm running it in production since 1month, no bug detected, evpn works fine
(with some fixes for ip mobility).
This need to bump the proxmox frr mirror to 8.0.1 tag.
Also, this need the libyang2, not available in debian repo.
Deb are available in frr repos:
comments inline
On 8/31/21 12:16, Lorenz Stechauner wrote:
this also removes the "content" selector from the window.
as far as it seems, this selector was never able to select
more than one entry, so it was useless.
the check for FormData() is also removed, because this is
supported by all majo
Looks mostly ok, some small nits (replied to the separate patches)
those could also be sent as follow ups
Aside from those things
Reviewed-by: Dominik Csapak
Tested-by: Dominik Csapak
On 8/31/21 12:16, Lorenz Stechauner wrote:
Signed-off-by: Lorenz Stechauner
---
www/manager6/Makefile
one nit inline
On 8/31/21 12:16, Lorenz Stechauner wrote:
Signed-off-by: Lorenz Stechauner
---
www/manager6/window/UploadToStorage.js | 5 +
1 file changed, 5 insertions(+)
diff --git a/www/manager6/window/UploadToStorage.js
b/www/manager6/window/UploadToStorage.js
index f0c6186f..ec83
---
PVE/Network/SDN/VnetPlugin.pm | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/PVE/Network/SDN/VnetPlugin.pm b/PVE/Network/SDN/VnetPlugin.pm
index 121fb7f..062904c 100644
--- a/PVE/Network/SDN/VnetPlugin.pm
+++ b/PVE/Network/SDN/VnetPlugin.pm
@@ -68,7 +68,7 @@ sub properties
---
PVE/Network/SDN.pm | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/PVE/Network/SDN.pm b/PVE/Network/SDN.pm
index d3399ce..b95dd5b 100644
--- a/PVE/Network/SDN.pm
+++ b/PVE/Network/SDN.pm
@@ -193,7 +193,7 @@ sub get_local_vnets {
my $privs = [ 'SDN.Audit', 'SDN.Alloc
arp-nd-suppression can break ip mobility,
when an ip from a vm is moved to another vm, with different mac.
For example, with a keepalived vip, the garp is filtered.
---
PVE/Network/SDN/Zones/EvpnPlugin.pm | 10 -
.../expected_controller_config| 31 ++
.../
---
PVE/API2/Network/SDN/Zones.pm | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --git a/PVE/API2/Network/SDN/Zones.pm b/PVE/API2/Network/SDN/Zones.pm
index 9485590..6e53240 100644
--- a/PVE/API2/Network/SDN/Zones.pm
+++ b/PVE/API2/Network/SDN/Zones.pm
@@ -284,9 +284,7 @@ __PACKAGE
This is a resubmit of last months patches
+ some new fix && features for evpn.
Alexandre Derumier (5):
vnet/subnet : add skipdns option
get_local_vnets: add permissions on /sdn/vnets/*
api2: zones: fix update
zones: evpn: add disable-arp-nd-suppression option
vnets: alias: fix regex
allow to register ip to ipam without dns registration.
can be used for temp/pending ip for example
---
PVE/Network/SDN/Subnets.pm | 70 ++
PVE/Network/SDN/Vnets.pm | 16 -
2 files changed, 49 insertions(+), 37 deletions(-)
diff --git a/PVE/Network/SDN
47 matches
Mail list logo
