lp:~hipl-core/hipl/rvs_mobility

Created by Miika Komu on 2011-07-07 and last modified on 2013-11-09
Get this branch:
bzr branch lp:~hipl-core/hipl/rvs_mobility
Members of HIPL core team can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
HIPL core team
Project:
HIPL
Status:
Development

Recent revisions

6399. By Miika Komu on 2013-11-09

Synchronized with trunk revision 6442

6398. By Miika Komu on 2013-10-30

Synchronized with trunk revision 6439

6397. By Paul Tötterman on 2012-10-28

Improved bzrignore

6396. By Miika Komu on 2012-10-28

Removed instructions on depracated usage of hipconf from the manual

hipconf normal|opp is not supported anymore as discussed in question
#200462 in Launchpad.

6395. By Miika Komu on 2012-10-28

Documented how to use reverse HTTP proxy with HIPL in the manual

We experimented with HAproxy in the following publication, and now this
is documented in the manual.

M. Komu, M. Sethi, R. Mallavarapu, H. Oirola, R. Khan, and S. Tarkoma.
Secure Networking for Virtual Machines in the Cloud, In International
Workshop on Power and QoS Aware Computing (PQoSCom2012). IEEE, sep
2012.

6394. By Miika Komu on 2012-10-28

Added copyright to the HOWTO.xml.in

The guard for copyright year resists any commits to the HOWTO. Besides,
I think it's useful to mention HIPL copyright also in the manual.

6393. By Miika Komu on 2012-10-28

A fix to the copyright hook that prevented commiting HOWTO.xml.in

The '.in' postfix in files masquared the commit hook for checking
copyright headers to see the actual file content. It appeared that this
worked in most of the cases except for HOWTO.xml.in. Now, the hook
strips out the '.in' postfix before checking the file postfix, and
commiting of HOWTO.xml.in works because .xml does not have a separate
rule (nor does it have copyright boilerplate), thus it is ignored by
the hook.

6392. By Miika Komu on 2012-09-07

Removed an outdated section from the manual

Built-in support for ICE was removed a long time ago. Removed the
corresponding section from the manual.

6391. By Miika Komu on 2012-07-19

Updated RPM spec file

The RPM spec file was out of date with the latest changes in the trunk.
A new library was introduced and the core library was renamed.

6390. By Miika Komu on 2012-07-19

A bug fix and a documentation update to the relay functionality

The HIP and ESP relay functionality are located in hipd and hipfw. The
former forwards control plane and the latter data plane to overcome
NAT devices that do not support e.g. Teredo-based penetration. This
functionality was broken twice in hipfw.

Firstly, a relay registration failed because the hipfw code didn't
distinguish between a registration (destination HIT is the relay) and
a relayed connection (destination HIT is not the relay). Now it does
again.

Secondly, the relay failed to forward the ESP data plane due to an
initialisation failure. The hipfw initialised the corresponding
iptables rules when it received a message from hipd indicating that
the relay was enabled. While this supported dynamic initialisation,
the hipfw had already lowered its privileges and consquently executing
iptables failed.

One possible way to solve the second issue would have been to require
omitting privilege downgrade when using the relay but this would have
been a bad idea from the view point of security. So, I decided to
change the dynamic relay configuration option into a static command
line option to avoid the chicken-and-egg problem with the hipfw. Now
the HIP vs. ESP relay functionality is also decoupled which I believe
is marginally more useful. This now identified in a more clear way in
the manual as well.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:hipl
This branch contains Public information 
Everyone can see this information.

Subscribers