Re: the plea to openstack

Worth reading, focus on users rather than vendors. CloudStack should keep up the install base to seize end users. On Sat, Nov 9, 2013 at 7:22 PM, Daan Hoogland wrote: > H, I finally got around reading it. Good read indeed. I wonder how > (if) we can organize ourselves and our communication so as

Re: SSL and JCE

It seems OpenJDK 6 and 7 are ok. Oracle jdk 6 needs JCE, oracle jdk 7 may need another extension (the JCE for jdk6 did not work for me). I would recommend that we @Ignore the failing tests, add some assumption or move them to a special test group which is not executed by default. On Tue, Nov 12,

[ACS4.2.1] Release readiness

While I was doing a dry run of building a RC and waiting on closure of last remaining critical issues, would like to know if there are any particular concerns about release readiness. For one the upgrade path from 2.2.14 to 4.2.1 is in works. Any other issues please pop up to save some last min

Review Request 15450: Fixed build failure

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15450/ --- Review request for cloudstack, Santhosh Edukulla and Prasanna Santhanam. Reposi

Re: SSL and JCE

The following tests are failing in my environment even with the JCE extensions. /* Test7: If no chain is given, the certificate should be self signed. Else, uploadShould Fail */ runUploadSslCertNoChain(); /* Test8: Chain is given but does not have root certificate */

Re: [PROPOSAL] Liaison with ETSI NFV ISG

OK, here's the draft of the Liaison request (template borrowed from OpenDaylight) -- To: ETSI Industry Study Group (ISG) on Network Functions Virtualization Prodip Sen, Chairman NFV ISG prodip@verizon.com Andrew Malis, NFV Liaison O

RE: [ACS4.2.1] request for QA update

Could someone share the compatibility matrix for 4.2.1. This is to include in the RN. -Original Message- From: Abhinandan Prateek [mailto:abhinandan.prat...@citrix.com] Sent: Tuesday, November 12, 2013 10:14 AM To: Sudha Ponnaganti; CloudStack Dev Cc: Raja Pullela Subject: Re: [ACS4.2.1]

Re: SSL and JCE

I see the JCE extensions in jdk 1.7 as well. They are present under /jre/lib/security. But still I see a test failure. Is there any other configuration that is required? Running org.apache.cloudstack.network.lb.CertServiceTest Tests run: 2, Failures: 1, Errors: 0, Skipped: 0, Time elapsed: 1.456

Re: SSL and JCE

My MacOSX 1.6 jdk seems to have the crypto extensions jce builtin and the build+test works. JDK 1.7 install does not have them though. The JCE kit seems to carry a BCL which is not ASF friendly [1]. But this being part of the Java install and not the project it should be okay IMO if we note it in

Re: Review Request 15448: add the timeout configuration for upgrade

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15448/ --- (Updated Nov. 12, 2013, 5:23 a.m.) Review request for cloudstack, Likitha Shett

Review Request 15448: add the timeout configuration for upgrade

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15448/ --- Review request for cloudstack, Likitha Shetty and Rajesh Battala. Bugs: CLOUDST

Re: [ACS4.2.1] request for QA update

Daan reported in another thread that "4.1.1 to 4.2.1 upgrade works fine in a lab env”. Raja/Lucian, any update on 2.2.14 upgrade ? -abhi On 11/11/13 9:17 pm, "Sudha Ponnaganti" mailto:sudha.ponnaga...@citrix.com>> wrote: Hi All, Scope Status [1] - Rayees has posted automation resul

Re: api incompatibility between 4.1 and 4.2 in ACLs

Yes, master as of today lists all acls with a newly created user-level account. On Mon, Nov 11, 2013 at 4:46 PM, Marcus Sorensen wrote: > I can say in practice, at least, if I create a rule that opens TCP 22 > and another rule that opens TCP 22 through 80, they both show up on > the virtual route

Re: api incompatibility between 4.1 and 4.2 in ACLs

I can say in practice, at least, if I create a rule that opens TCP 22 and another rule that opens TCP 22 through 80, they both show up on the virtual router's iptables. That shouldn't hurt anything, and is actually a bit less confusing. I think I see what you're saying, the first rule listed will m

Re: api incompatibility between 4.1 and 4.2 in ACLs

On 11/11/13 3:34 PM, "Marcus Sorensen" wrote: >On Mon, Nov 11, 2013 at 4:09 PM, Alena Prokharchyk > wrote: >> On 11/11/13 2:59 PM, "Marcus Sorensen" wrote: >> >>>Sorry for the back and forth, I'm interfacing with individuals who >>>consume our CloudStack environment. I'm being told that the iss

Re: api incompatibility between 4.1 and 4.2 in ACLs

On Mon, Nov 11, 2013 at 4:09 PM, Alena Prokharchyk wrote: > On 11/11/13 2:59 PM, "Marcus Sorensen" wrote: > >>Sorry for the back and forth, I'm interfacing with individuals who >>consume our CloudStack environment. I'm being told that the issues >>actually aren't related to API parameters, but b

Re: 4.3 Not Building (Test Failure)

Yeah...I was going to say we need to document this in the how-to-set-up-CloudStack Wiki or make this a standard dependency that just works. Also, if there are legalities involved, we need to work that out, as well. On Mon, Nov 11, 2013 at 4:08 PM, David Nalley wrote: > That's still concerning.

Re: api incompatibility between 4.1 and 4.2 in ACLs

On 11/11/13 2:59 PM, "Marcus Sorensen" wrote: >Sorry for the back and forth, I'm interfacing with individuals who >consume our CloudStack environment. I'm being told that the issues >actually aren't related to API parameters, but behavior of the API >calls: > >1) As a user, listing network ACLs

Re: 4.3 Not Building (Test Failure)

That's still concerning. The deps should be handled automagically by maven, and new dependencies should be discussed on list. Especially because this potentially triggers legal compliance issues. --David On Mon, Nov 11, 2013 at 5:55 PM, Mike Tutkowski wrote: > Ah, you are correct - thanks! > >

Re: api incompatibility between 4.1 and 4.2 in ACLs

Sorry for the back and forth, I'm interfacing with individuals who consume our CloudStack environment. I'm being told that the issues actually aren't related to API parameters, but behavior of the API calls: 1) As a user, listing network ACLs now shows ALL ACLs, not just the ones you own. An exam

Re: 4.3 Not Building (Test Failure)

Ah, you are correct - thanks! I can now get the system to build and the tests to run again. :) On Mon, Nov 11, 2013 at 3:04 PM, Laszlo Hornyak wrote: > I believe it must be /jre/lib/security > > > On Mon, Nov 11, 2013 at 11:02 PM, Mike Tutkowski < > mike.tutkow...@solidfire.com> wrote: > > > Pe

Re: 4.3 Not Building (Test Failure)

I believe it must be /jre/lib/security On Mon, Nov 11, 2013 at 11:02 PM, Mike Tutkowski < mike.tutkow...@solidfire.com> wrote: > Per the install directions, I placed local_policy.jar and > US_export_policy.jar in /lib/security. > > My build failed at the same test. > > I also get 61 compile erro

Re: 4.3 Not Building (Test Failure)

Per the install directions, I placed local_policy.jar and US_export_policy.jar in /lib/security. My build failed at the same test. I also get 61 compile errors in Eclipse. On Mon, Nov 11, 2013 at 2:40 PM, Syed Ahmed wrote: > Hi Mike, > > Can you try and install the JCE extensions suggested by

Re: SSL and JCE

Hi, That is a good question, I do not know for sure, but this package needs to be signed by oracle, it is not redistributable and has teritorial import restrictions, so it could be problematic :-( I hope it is not. Guys, can someone help us here? On Mon, Nov 11, 2013 at 10:21 PM, Syed Ahmed wro

Re: 4.3 Not Building (Test Failure)

Hi Mike, Can you try and install the JCE extensions suggested by Laszlo? Thanks, -Syed On 13-11-11 04:34 PM, Mike Tutkowski wrote: Thanks, Wei. Does this assert failure look familiar to you? --- Test set: org.apache

Re: 4.3 Not Building (Test Failure)

Thanks, Wei. Does this assert failure look familiar to you? --- Test set: org.apache.cloudstack.network.lb.CertServiceTest --- Tests run: 2, F

Re: 4.3 Not Building (Test Failure)

I built succeed with jdk 1.6 and jdk 1.7 Maybe some packages are missing in your environment. You can get some information from /Users/mtutkowski/Documents/CloudStack/src/CloudStack/server/target/surefire-reports 2013/11/11 Mike Tutkowski > Looks like I'm running (1.7...I believe this was for

Re: api incompatibility between 4.1 and 4.2 in ACLs

Marcus, if any of the CS API command(s) return the error for parameter/parameter combination that used to work before, then it means APIs are incompatible, and it has to be fixed. Thank you for looking into it. -Alena. From: Marcus Sorensen mailto:shadow...@gmail.com>> Reply-To: "dev@cloudstack

Re: SSL and JCE

Hi Laszlo, The CertService uses BouncyCastle for certificate parsing and validation. The JCE extension provides the API for using BouncyCastle as the provider. So, JCE is required. I know that BouncyCastle is added in CS. Would it be possible to add JCE as a dependency too? Thanks, -Syed On

Re: api incompatibility between 4.1 and 4.2 in ACLs

Ok, I'll dig deeper into it. Our api's ACL tests are breaking against 4.2. On Sun, Nov 10, 2013 at 11:13 PM, Kishan Kavala wrote: > Marcus, > aclid is optional when creating a networlACL. In 4.1, networkId is mandatory > for creating ACL. So, when networkId is specified instead of aclid in 4.2,

Re: 4.3 Not Building (Test Failure)

Looks like I'm running (1.7...I believe this was for a Libvirt change): mtutkowski-LT:cloudstack mtutkowski$ java -version java version "1.7.0_40" Java(TM) SE Runtime Environment (build 1.7.0_40-b43) Java HotSpot(TM) 64-Bit Server VM (build 24.0-b56, mixed mode) You think this might be the proble

Re: [DISCUSS] Domain/Account/User Sync Up Among Multiple Regions

All, I'm new to the cloudstack project, so there can be something I missed for consideration, but the current region support seems to be inadequate (I hope this does not offend anyone...) because even if a customer can have multiple regions, the resources in each region are totally separated like

Re: 4.3 Not Building (Test Failure)

Hi Mike, I do not see the failing unit test in the output but the CertServiceTest was failing all weekend till I installed the JCE extension into my jdk6. http://www.oracle.com/technetwork/java/javase/downloads/jce-6-download-429243.html If it does not help. could you share the name of the proble

4.3 Not Building (Test Failure)

Anyone know anything about this issue? Thanks! [INFO] Apache CloudStack Server .. FAILURE [36.923s] [INFO] Apache CloudStack Usage Server SKIPPED [INFO] Apache XenSource XAPI . SKIPPED [INFO] Apache CloudStack Cloud Engine O

Re: Review Request 15391: few cleanups in CertServiceTest and CertService

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15391/#review28686 --- Ship it! Ship It! - Syed Ahmed On Nov. 10, 2013, 6:26 p.m., Lasz

Re: upgrade question

Alena, Sorry for not reporting earlier. The error was due to an incomplete import by a mysql version different from the one doing the export. No cloudstack issue there Thanks, mobile biligual spell checker used Op 11 nov. 2013 18:24 schreef "Alena Prokharchyk" < alena.prokharc...@citrix.com>: >

persistence layer

Hi, What are the general directions with the persistence system? What I know about it is: - It works with JPA (javax.persistence) annotations - But rather than integrating a general JPA implementation such us hibernate, eclipselink or OpenJPA it uses its own query generator and DAO classes to gene

Re: Review Request 15349: Overprivisoning changes needed

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15349/#review28667 --- server/src/com/cloud/configuration/Config.java

RE: SRX inline with VR

Hi Sheng, Thanks for the replies, but I have to admit I'm not 100% sure what your answer is - sorry. I think you are saying - "No, I can't use the VR for LB when using an SRX Firewall" I hope you are not saying that "we cannot use the VR for LB" on its own" Regards Geoff Higginbottom D: +44

Re: Secondary Storage - migrating from NFS to S3 for

Hi Andrei, This support is added in CloudStack 4.2.1, not released yet. See https://cwiki.apache.org/confluence/display/CLOUDSTACK/Migration+of+NFS+Sec ondary+Storage+to+Object+Store for details. Thanks -min On 11/11/13 8:50 AM, "Andrei Mikhailovsky" wrote: >Hello guy

RE: [ACS4.2.1] request for QA update

Minor update on the ACS 4.2 to 4.2.1 upgrade. From: Sudha Ponnaganti Sent: Monday, November 11, 2013 9:18 PM To: Abhinandan Prateek; CloudStack Dev Cc: Raja Pullela Subject: RE: [ACS4.2.1] request for QA update Hi All, Scope Status [1] - Rayees has posted automation results earlier BVTs

Re: upgrade question

Daan, If you execute the line "DROP VIEW IF EXISTS `cloud`.`event_view`;" manually, does it drop the view? Also can you check if your management server was started twice (unlikely)? I can't think of anything else. In the future we should use "CREATE OR REPLACE VIEW" syntax instead of dropping/

RE: Regarding the ssl key store change

Hi Sheng, As the cloudmanagementserver.keystore is not valid after RPM installation, I remove the file from cloudstack installations (including DEBs and RPMs). For someone who use server-ssl.xml, as cloudmanagementserver.keystore is not installed by default, they need to start with server-nonss

Re: [ACS 421] Upgrade testing

fixed. 2013/11/11 Wei Zhou > Hi Daan, > > Bugs (CLOUDSTACK-5042/5076/4923) are fixed. > > The only problem is what Sheng mentioned ( > http://cloudstack.markmail.org/message/t7ntzxn43fawknqi) > I will fix it soon. > > > Kind Regards, > > Wei ZHOU > Innovation Engineer Cloud, LeaseWeb B.V. > w.z.

Secondary Storage - migrating from NFS to S3 for

Hello guys, What is the best way to migrate from NFS secondary storage to S3 (ceph) secondary storage? I understand that I can't simply add S3 and wait for it to populate with snapshots and templates and after that remove the NFS storage. ACS doesn't allow me to add S3 if I already have NFS.

Re: Review Request 15418: Fixes about: Code quality, checkstyle and cloudstack conventions

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15418/#review28661 --- plugins/network-elements/nicira-nvp/src/com/cloud/network/element/N

RE: [ACS 421] Upgrade testing

Hi Daan, Bugs (CLOUDSTACK-5042/5076/4923) are fixed. The only problem is what Sheng mentioned (http://cloudstack.markmail.org/message/t7ntzxn43fawknqi) I will fix it soon. Kind Regards, Wei ZHOU Innovation Engineer Cloud, LeaseWeb B.V. w.z...@leaseweb.com -Original Message- From: Da

Re: [ACS 421] Upgrade testing

the 4.1.1 to 4.2.1 upgrade works fine in a lab env using a production database. @Wei, how are you coming along? rgards, Daan On Mon, Nov 11, 2013 at 7:13 AM, Abhinandan Prateek wrote: > >>On Fri, Nov 08, 2013 at 12:52:13PM +, Abhinandan Prateek wrote: >>> Sudha, >>> We can still cut RC bu

RE: [ACS4.2.1] request for QA update

Hi All, Scope Status [1] - Rayees has posted automation results earlier BVTs and regressions were done in citrix lab on 4.2.1 branch - Tested a few regressions around VMWare as there are couple of issues got fixed in last phases of 4.2 - 250 issues got fixed for 4.2

Re: [jira] [Updated] (CLOUDSTACK-4982) Top of dialogs cut off

looks like this has been fixed in 4.3 On Nov 7, 2013, at 11:58 PM, Luis wrote: > Hi > > I will appreciate your help to fix this problem > > > CloudStack 4.2 > Ubuntu 12.04 > single machine > > The errors > > > 10.0.0.20:/export/primary/ 684G 2.5G 646G 1% > /mnt/pri

[DISCUSS] (CLOUDSTACK-1889)

All, I have a query with respect to this defect. With a build off the master it looks like the updateResourceCount api is returning the count of resources a user can use or create and that appears to be the documented behaviour for this api. Furthermore it appears that the UI is correctly displayi

upgrade question

H, I started doing some upgrade testing and got an exception during startup: INFO [cloud.upgrade.DatabaseUpgradeChecker] (Timer-2:) Database upgrade must be performed from 4.1.1 to 4.2.1-SNAPSHOT ERROR [utils.db.ScriptRunner] (Timer-2:) Error executing: CREATE VIEW `cloud`.`event_view` AS se

Re: Question: Error when creating templates from ROOT volumes in the Simulator

David, I took a little closer look today. I think that the way CloudStack chooses the motion service to detect that the simulator should copy over a mock template to a mock location needs intercepting. I'm not fully privy of the changes to storage code (both in master and 4.2) but will troubleshoo

Review Request 15418: Fixes about: Code quality, checkstyle and cloudstack conventions

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15418/ --- Review request for cloudstack, daan Hoogland and Hugo Trippaers. Repository: cl

Re: Review Request 15412: Fixing coverity issue 1125364

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15412/ --- (Updated Nov. 11, 2013, 12:07 p.m.) Review request for cloudstack, daan Hooglan

Review Request 15412: Fixing coverity issue 1125364

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15412/ --- Review request for cloudstack and daan Hoogland. Repository: cloudstack-git D

Snapshot file extension on nfs

Hi all, Observed this while debugging an issue related to snapshots. The snapshot files on secondary storage server have .ovf entension when created through XenServer and .vhd when created through Vmware. But these files don't have any extension when they are created through KVM. Has anyone encou

Re: Review Request 14199: Adding missing test cases: Snapshots Improvement

> On Nov. 4, 2013, 2:43 p.m., SrikanteswaraRao Talluri wrote: > > is_snapshot_on_nfs method is returning error. NFS export path is wrongly > > framed in utils.py > > > > Cmd: mount -t nfs 10.147.28.7/export/home/talluri/vmware.campo/secondary > > /mnt/tmp via Host: 10.147.38.207} {returns: ["m

Re: Review Request 15392: Added fix for CLOUDSTACK-5134

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15392/ --- (Updated Nov. 11, 2013, 11:22 a.m.) Review request for cloudstack and Girish Sh

Review Request 15392: Added fix for CLOUDSTACK-5134

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15392/ --- Review request for cloudstack and Girish Shilamkar. Summary (updated) -

Review Request 15394: Added fix for CLOUDSTACK-5134

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15394/ --- Review request for cloudstack and Girish Shilamkar. Bugs: CLOUDSTACK-5134 h

Re: Review Request 15349: Overprivisoning changes needed

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15349/ --- (Updated Nov. 11, 2013, 10:03 a.m.) Review request for cloudstack and Nitin Meh

Re: Review Request 15349: Overprivisoning changes needed

> On Nov. 9, 2013, 12:36 a.m., Nitin Mehta wrote: > > server/src/com/cloud/configuration/Config.java, line 302 > > > > > > This needs to have corresponding upgrade fix as well. This is the same as in 3.0.7, i think we

[ACS4.2.1] request for QA update

Sudha/Raja, You guys have been doing a QA on 4.2.1 for quite some time now. It would be good for community to know in general how the 4.2.1 branch is coming off in terms of quality. -abhi

bug - incorrect provisioning on vswitches instead of dvswitches

Hi, I would like to submit a bug for discussion - https://issues.apache.org/jira/browse/CLOUDSTACK-5059 Do let me know if additional details are needed to understand & replicate it. Thanks, Octavian -- Octavian Popescu Manager, Hosting Solution Design +420-225-352673

Re: [PROPOSAL] Liaison with ETSI NFV ISG

How about Chiradeep makes the contact and proposal for CloudStack to join/be represented ? Then we can decide who is the representative. Daan could do it and Nguyen could be the substitute ? On Nov 9, 2013, at 8:38 AM, Daan Hoogland wrote: > I don't mind being involved if needed. > > On Fri

RE: Regarding the ssl key store change

Hi Sheng, Yes. AFAIU, client/tomcatconf/cloudmanagementserver.keystore.in should be installed by default, right? If we do not need install cloudmanagementserver.keystore.in in the installation, the following patch can solve it. diff --git a/debian/cloudstack-management.install b/debian/clo

Re: Review Request 15323: CLOUDSTACK-5080: Hypervisor Capabilities table missing entry for Simulator

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/15323/#review28642 --- Commit dfb81ac1274d8ebe4a47223d10f3de44aa9091bf in branch refs/heads