Custom Query (98 matches)

Filters
 
Or
 
  
 
Columns

Show under each result:

Results (55 - 57 of 98)

9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29
Ticket Resolution Summary Owner Reporter
#47 fixed User who created sliver can incorrectly use other user's slice cred to do any operation on slivers somebody lnevers@bbn.com
Description

This test scenario uses two user accounts:

  • lnevers1 urn:publicid:IDN+pgeni.gpolab.bbn.com+user+lnevers1
  • lnevers urn:publicid:IDN+pgeni.gpolab.bbn.com+user+lnevers

The user "lnevers" binds the user "lnevers1" to a slice. User "lnevers1" gets slice credentials and creates a sliver. User "lnevers" with the lnevers1 slice credentials executes various operations which work and should not.

Here is the test sequence:

  1. As user "lnevers", used the protogeni-tests script registerslice.py to bind user "lnevers1" to a slice. The command executed: 
    lnevers@sendaria:~/protogeni-tests$ ./registerslice.py --certificate=/home/lnevers/.ssl/pgeni/encrypted.pem --sa=https://www.pgeni.gpolab.bbn.com:443/protogeni/xmlrpc/sa -n bindslice lnevers1
Got my SA credential
No such slice registered here:Creating new slice called bindslice
New slice created: urn:publicid:IDN+emulab.net+slice+bindslice
Found other user record at the SA, binding to slice ...
Bound other user to slice at the SA
  1. User "lnevers1" gets slice credentials: 
    lnevers1@sendaria:~/gcf-1.6.2$ omni.py getslicecred bindslice -o
Result Summary: Saved slice bindslice cred to file bindslice-cred.xml
  1. User "lnevers1" creates a sliver: 
    lnevers1@sendaria:~/gcf-1.6.2$ omni.py createsliver -a insta-utah  bindslice insta.rspec --slicecredfile ./bindslice-cred.xml --api-version 2 -t GENI 3
Result Summary: Slice urn:publicid:IDN+pgeni.gpolab.bbn.com+slice+bindslice expires 
on 2012-08-05 00:00:00 UTC
Reserved resources on https://boss.utah.geniracks.net/protogeni/xmlrpc/am/2.0.
  1. Use "lnevers" uses lnevers1 slice credentials to execute various commands which should not work. Note the credential file is renamed "lnevers1-bindslice-cred.xml" to make this capture clearer: 
    lnevers@sendaria:~/gcf-1.6.2$ omni.py -a insta-utah listresources bindslice --slicecredfile ./lnevers1-bindslice-cred.xml --api-version 2 -t GENI 3 -o
Result Summary: Retrieved resources for slice bindslice from 1 aggregates.
Wrote rspecs from 1 aggregates to 1 files
Saved listresources RSpec at 'unspecified_AM_URN' to file 
bindslice-rspec-boss-utah-geniracks-net-protogeni-xmlrpc-am-2-0.xml; . 


lnevers@sendaria:~/gcf-1.6.2$ omni.py -a insta-utah sliverstatus bindslice --slicecredfile ./lnevers1-bindslice-cred.xml --api-version 2 -t GENI 3 -o
Result Summary: Slice urn:publicid:IDN+pgeni.gpolab.bbn.com+slice+bindslice expires 
on 2012-08-05 00:00:00 UTC
Saved sliverstatus on bindslice at AM https://boss.utah.geniracks.net/protogeni/xmlrpc/am/2.0 
to file bindslice-sliverstatus-boss-utah-geniracks-net-protogeni-xmlrpc-am-2-0.json. 


lnevers@sendaria:~/gcf-1.6.2$ omni.py -a insta-utah renewsliver bindslice --slicecredfile ./lnevers1-bindslice-cred.xml --api-version 2 -t GENI 3 -o
Result Summary: Slice urn:publicid:IDN+pgeni.gpolab.bbn.com+slice+bindslice expires on
 2012-08-05 00:00:00 UTC
Renewed sliver urn:publicid:IDN+pgeni.gpolab.bbn.com+slice+bindslice at unspecified_AM_URN (https://boss.utah.geniracks.net/protogeni/xmlrpc/am/2.0) until 
2012-08-04T00:00:00+00:00 (UTC)

lnevers@sendaria:~/gcf-1.6.2$ omni.py -a insta-utah deletesliver bindslice --slicecredfile ./lnevers1-bindslice-cred.xml --api-version 2 -t GENI 3 
Result Summary: Deleted sliver urn:publicid:IDN+pgeni.gpolab.bbn.com+slice+bindslice on unspecified_AM_URN at https://boss.utah.geniracks.net/protogeni/xmlrpc/am/2.0

Attaching the lnevers1 slice credentials file used by lnevers.

#46 fixed Standardize version of FOAM nick.bastin@gmail.com jbs@bbn.com
Description

The InstaGENI rack in Utah is currently running a forked-off version of FOAM that Nick handcrafted for it, to allow ProtoGENI to tell FOAM about things that FOAM could then auto-approve. Figure out what the future of that is, and get InstaGENI running a standard version of FOAM.

#45 fixed perl "Uninitialized value" warning in experiment details page somebody chaos@bbn.com
Description

I created a sliver today on the slice pgeni.gpolab.bbn.com/ecgtest2, containing two VMs on pc3.utah.geniracks.net. The web details page, https://boss.utah.geniracks.net/showexp.php3?pid=pgeni-gpolab-bbn-com&eid=ecgtest2#details, contains: 

SSHD Port allocation ('ssh -p portnum'):
ID              Port       SSH command
--------------- ---------- ----------------------
Use of uninitialized value $m in concatenation (.) or string at /usr/testbed/bin/tbreport line 370, <DATA> line 497.
virt1           30778      ssh -p 30778 .ecgtest2.pgeni-gpolab-bbn-com.utah.geniracks.net
Use of uninitialized value $m in concatenation (.) or string at /usr/testbed/bin/tbreport line 370, <DATA> line 497.
virt2           30779      ssh -p 30779 .ecgtest2.pgeni-gpolab-bbn-com.utah.geniracks.net

Looks like a small perl bug of some sort.

9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29
Note: See TracQuery for help on using queries.