Merge lp:~fahad-aizaz/hipl/hip-cert-conf into lp:hipl
Status: | Needs review |
---|---|
Proposed branch: | lp:~fahad-aizaz/hipl/hip-cert-conf |
Merge into: | lp:hipl |
Diff against target: |
233 lines (+40/-113) 6 files modified
Makefile.am (+2/-1) debian/hipl-daemon.install (+1/-0) hipd/hip_cert.conf (+34/-0) hipd/init.c (+1/-112) packaging/hipl.spec (+1/-0) packaging/openwrt/hipl/Makefile.in (+1/-0) |
To merge this branch: | bzr merge lp:~fahad-aizaz/hipl/hip-cert-conf |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Samuel Richter | Needs Fixing | ||
Diego Biurrun | Needs Information | ||
Stefan Götz (community) | Abstain | ||
Review via email: mp+90130@code.launchpad.net |
Description of the change
Removing runtime generation of configuration file hip_cert.conf. With additional support for its installation along with HIPL package for OpenWRT, Debian and RPM (package based distributions)
Note:
While doing so, I observed that the configuration file though referenced in the code for reading, but I didn't find any trigger to actually read the contents of the file. That is, the function that reads the configuration file section by section, is not being called though its definition exist.
Please correct me about this if I am wrong.
Unmerged revisions
- 6261. By Fahad Aizaz
-
Commiting all recent changes from the trunk into the branch.
- 6260. By Fahad Aizaz
-
The function is no longer required.
The function retrives the hit of the machine and places it as
issuer hit. It is no longer requried since the config file in not
generated at runtime anymore. - 6259. By Fahad Aizaz
-
build: moving the configuration file to the correct path.
Placing the hip_cert.conf file at its correct path while HIP in installed
and configured on following distributions:
1. Debian
2. OpenWRT
3. FedoraNote: the path is determined by the 'configure' script otherwise it depends
upon the distribution default path for keeping configuration files.
e.g. /etc/<package name> - 6258. By Fahad Aizaz
-
Comenting out of the name, value pairs in the configuration file.
The configuration file contains 'issuer hit' and 'days' of expiry.
The issuer hit which is the HIT of the machine assigned to it when
HIP daemon is executed, was placed in the configuration file at runtime.Since the HIT will be different for different machines, the configuration
file contains commented out entries. The user must place the correct
entries to this file, or those he/she want to use for certificate
generation. - 6257. By Fahad Aizaz
-
Adding default 'hip_cert.conf' file to HIP package.
- 6256. By Fahad Aizaz
-
Removing code generating 'hip_cert.conf' at runtime
The function 'init_certs()' is removed so that the configuration file
is not created and populated at runtime.Instead a default hip_cert.conf file is packaged with HIP package.
Hi Fahad!
review abstain
The code 'changes' look good to me, but I cannot comment on the
packaging stuff.
> While doing so, I observed that the configuration file though
> referenced in the code for reading, but I didn't find any trigger to
> actually read the contents of the file. That is, the function that
> reads the configuration file section by section, is not being called
> though its definition exist.
Which one is the function for reading the config file? x509v3_ handle_ request_ to_sign? Isn't that one called in
hip_cert_
hipd/user.c?
Stefan