Jump to: navigation, search

Difference between revisions of "GuestAgent"

Line 3: Line 3:
 
* '''Launchpad Entry''': [[NovaSpec]]:resize-servers
 
* '''Launchpad Entry''': [[NovaSpec]]:resize-servers
 
* '''Created''': 2010-09-01
 
* '''Created''': 2010-09-01
* '''Contributors''': [[JesseAndrews]]
+
* '''Contributors''': [[JesseAndrews]], [[ChrisBehrens]]
  
 
== Summary ==
 
== Summary ==
Line 16: Line 16:
  
 
App -> Host ([[XenStore]]) <-> Guest Agent  
 
App -> Host ([[XenStore]]) <-> Guest Agent  
 +
 +
See the [[GuestAgentXenStoreCommunication]] wiki entry for more information.  Details about the 'protocol' used for the [[XenStore]] communication is contained there.
  
 
Current commands on Guest Agents (Linux/Windows):
 
Current commands on Guest Agents (Linux/Windows):
* Get current version
+
 
* Reset password
+
{| border="1" cellpadding="2" cellspacing="0"
* Ready/Available?
+
| '''Description'''
* Reset network
+
| '''Command'''
* Update Agent
+
| '''Command Arguments'''
* Update [[XenTools]] (windows only)
+
| '''Response Code'''
* KMS Licensing (windows only)
+
|-
* Initiate Key for encryption mechanism of password reset
+
| Get version info from the agent
* File injection
+
| "version"
 +
|  "agent" or "xentools" or "updater"
 +
|  "0"
 +
|-
 +
| Get a list of agent features
 +
| "features"
 +
| ""
 +
| "0"
 +
|-
 +
| Do a Diffie-Hellman Key Exchange
 +
| "keyinit"
 +
| local public key
 +
| "D0"
 +
|-
 +
| (Re)set root password
 +
| "password"
 +
| encrypted password
 +
| "0"
 +
|-
 +
| Configure the networking
 +
| "resetnetwork"
 +
| ""
 +
| "0"
 +
|-
 +
| Update the agent
 +
| "agentupdate"
 +
| "URL,MD5SUM"
 +
| "0"
 +
|-
 +
| Inject a file
 +
| "injectfile"
 +
| base64 encoding of "file_path,file_contents"
 +
| "0"
 +
|-
 +
| Guest is ready/available?
 +
 +
 +
 +
|-
 +
| Update [[XenTools]] (Windows only)
 +
 +
 +
 +
|-
 +
| KMS Licensing (Windows only)
 +
 +
 +
 +
|}
  
 
=== Considerations ===
 
=== Considerations ===

Revision as of 22:25, 27 December 2010

Summary

The feature will allow communication with a guest agent from compute node controller. This allows cloud controller APIs to be added for user controlled password reset, settings ips, ... - allowing windows support.

Design Summit Notes

Live Notes were be taken for this topic at: http://etherpad.openstack.org/GuestAgent

Current architecture of the Rackspace Guest Agents

App -> Host (XenStore) <-> Guest Agent

See the GuestAgentXenStoreCommunication wiki entry for more information. Details about the 'protocol' used for the XenStore communication is contained there.

Current commands on Guest Agents (Linux/Windows):

Description Command Command Arguments Response Code
Get version info from the agent "version" "agent" or "xentools" or "updater" "0"
Get a list of agent features "features" "" "0"
Do a Diffie-Hellman Key Exchange "keyinit" local public key "D0"
(Re)set root password "password" encrypted password "0"
Configure the networking "resetnetwork" "" "0"
Update the agent "agentupdate" "URL,MD5SUM" "0"
Inject a file "injectfile" base64 encoding of "file_path,file_contents" "0"
Guest is ready/available?
Update XenTools (Windows only)
KMS Licensing (Windows only)

Considerations

1. What happens when a client/customer kills the guest agent or disables the startup? 2. Agents should be hypervisor agnostic/support many hypervisors

Summary

The feature will allow communication with a guest agent from compute node controller. This allows cloud controller APIs to be added for user controlled password reset, settings ips, ... - allowing windows support.

Release Note

Support has been added to OpenStack compute host agent code to support communication with guest agents.

Rationale

Windows instances cannot be configured similarly to linux machines. Supporting them as well as tools that provide for better user experience (such as password reset) provide rackspace/slicehost parity.

User stories

A user forgets their password. Rather than having to use rescue mode to reset the password, the user may have the password reset by using an API.

Assumptions

Design

To communicate with guest agents, we use the XenStore in XenServer.

Implementation

API additions:

  • reset password

Messages are written to XenStore using xenstore-write for each instance via /local/domain/(domid)/data/guest/(message_uuid)

Test/Demo Plan