Revision 45f75526

« Previous | Next »

ID	45f75526b84876c046c197e58267c9e571ac4c72
Parent	658eb2dc
Child	b75430d9

Added by Helga Velroyen about 10 years ago

Disabling client certificate usage

This patch temporarily disables the usage of the client
SSL certificates. The handling of RPC connections had a
conceptional flaw, because the certificates lack a proper
signature. For this, Ganeti needs to implement a CA,
which is already designed (see design-x509-ca.rst) but
not implemented yet. This patch keeps most of the
client certificate infrastructure intact which was already
created and and can be reused, but just disables the
actual usage of the certificates in RPC calls till the CA
is in place.

Signed-off-by: Helga Velroyen <helgav@google.com>
Reviewed-by: Klaus Aehlig <aehlig@google.com>

Files

added
modified
copied
renamed
deleted

View differences

UPGRADE (diff)
lib
- cmdlib
  - cluster.py (diff)
- http
  - __init__.py (diff)
- rpc
  - node.py (diff)
man
- gnt-cluster.rst (diff)
src
- Ganeti
  - Rpc.hs (diff)
test
- py
  - cmdlib
    - cluster_unittest.py (diff)
tools
- post-upgrade (diff)

Synnefo » snf-ganeti

Revision 45f75526

Files