Skip to content

SPKI: TRC signing #3340

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 12, 2019
Merged

SPKI: TRC signing #3340

merged 1 commit into from
Nov 12, 2019

Conversation

oncilla
Copy link
Contributor

@oncilla oncilla commented Nov 8, 2019
edited by kormat
Loading

Add support for signing base TRCs and TRC updates based on the TRC
configuration and the prototype TRCs.

The version to sign can be provided via command line flag.
If no version is specified, the tool searches the newest TRC
configuration file and uses its version.

This change is Reviewable

@oncilla oncilla added the c/tooling SCION network tools label Nov 8, 2019
@oncilla oncilla added this to the Q4S2 milestone Nov 8, 2019
lukedirtwalker
lukedirtwalker approved these changes Nov 11, 2019
View reviewed changes
Copy link
Collaborator

@lukedirtwalker lukedirtwalker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewed 16 of 16 files at r1.
Reviewable status: all files reviewed, 3 unresolved discussions (waiting on @oncilla)

go/lib/scrypto/trc/v2/primary.go, line 292 at r1 (raw file):

		return []byte(s), nil
	}
	return nil, common.NewBasicError(ErrInvalidKeyType, nil, "key_type", int(t))

Use serrors.WithCtx

go/tools/scion-pki/internal/v2/trcs/sign.go, line 31 at r1 (raw file):

type signatureGen struct {
	Dirs    pkicmn.Dirs

hm why doesn't that just embed loader? or did you deliberately chose it like this?

go/tools/scion-pki/internal/v2/trcs/sign_test.go, line 64 at r1 (raw file):

			isdDir := filepath.Join(tmpDir, "ISD1")
			require.NoError(t, os.MkdirAll(isdDir, 0777))
			err := exec.Command("cp", "-r",

ugh, too bad there is no lib function for this :/

@oncilla
SPKI: TRC signing
90fa92a 
Add support for signing base TRCs and TRC updates based on the TRC
configuration and the prototype TRCs.

The version to sign can be provided via command line flag.
If no version is specified, the tool searches the newest TRC
configuration file and uses its version.
oncilla
oncilla commented Nov 12, 2019
View reviewed changes
Copy link
Contributor Author

@oncilla oncilla left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewable status: :shipit: complete! all files reviewed, all discussions resolved

go/lib/scrypto/trc/v2/primary.go, line 292 at r1 (raw file):

Previously, lukedirtwalker (Lukas Vogel) wrote…

Use serrors.WithCtx

I would rather have it consistent in the file and resolve this in a separate PR.

go/tools/scion-pki/internal/v2/trcs/sign.go, line 31 at r1 (raw file):

Previously, lukedirtwalker (Lukas Vogel) wrote…

hm why doesn't that just embed loader? or did you deliberately chose it like this?

Loader will have additional capability that should not be "inherited" by the signatureGen

go/tools/scion-pki/internal/v2/trcs/sign_test.go, line 64 at r1 (raw file):

Previously, lukedirtwalker (Lukas Vogel) wrote…

ugh, too bad there is no lib function for this :/

yes. :sad-panda:

@oncilla oncilla merged commit 504fd7d into scionproto:master Nov 12, 2019
@oncilla oncilla deleted the pub-spki-gen-sign branch November 12, 2019 08:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lukedirtwalker lukedirtwalker lukedirtwalker approved these changes

Assignees
No one assigned
Labels
c/tooling SCION network tools
Projects
None yet
Milestone
Q4S2
Development

Successfully merging this pull request may close these issues.
2 participants
@oncilla @lukedirtwalker