lp://staging/~hipl-core/hipl/update-doc
- Get this branch:
- bzr branch lp://staging/~hipl-core/hipl/update-doc
Branch merges
Related bugs
Related blueprints
Branch information
Recent revisions
- 6396. By Miika Komu
-
Removed instructions on depracated usage of hipconf from the manual
hipconf normal|opp is not supported anymore as discussed in question
#200462 in Launchpad. - 6395. By Miika Komu
-
Documented how to use reverse HTTP proxy with HIPL in the manual
We experimented with HAproxy in the following publication, and now this
is documented in the manual.M. Komu, M. Sethi, R. Mallavarapu, H. Oirola, R. Khan, and S. Tarkoma.
Secure Networking for Virtual Machines in the Cloud, In International
Workshop on Power and QoS Aware Computing (PQoSCom2012). IEEE, sep
2012. - 6394. By Miika Komu
-
Added copyright to the HOWTO.xml.in
The guard for copyright year resists any commits to the HOWTO. Besides,
I think it's useful to mention HIPL copyright also in the manual. - 6393. By Miika Komu
-
A fix to the copyright hook that prevented commiting HOWTO.xml.in
The '.in' postfix in files masquared the commit hook for checking
copyright headers to see the actual file content. It appeared that this
worked in most of the cases except for HOWTO.xml.in. Now, the hook
strips out the '.in' postfix before checking the file postfix, and
commiting of HOWTO.xml.in works because .xml does not have a separate
rule (nor does it have copyright boilerplate), thus it is ignored by
the hook. - 6392. By Miika Komu
-
Removed an outdated section from the manual
Built-in support for ICE was removed a long time ago. Removed the
corresponding section from the manual. - 6391. By Miika Komu
-
Updated RPM spec file
The RPM spec file was out of date with the latest changes in the trunk.
A new library was introduced and the core library was renamed. - 6390. By Miika Komu
-
A bug fix and a documentation update to the relay functionality
The HIP and ESP relay functionality are located in hipd and hipfw. The
former forwards control plane and the latter data plane to overcome
NAT devices that do not support e.g. Teredo-based penetration. This
functionality was broken twice in hipfw.Firstly, a relay registration failed because the hipfw code didn't
distinguish between a registration (destination HIT is the relay) and
a relayed connection (destination HIT is not the relay). Now it does
again.Secondly, the relay failed to forward the ESP data plane due to an
initialisation failure. The hipfw initialised the corresponding
iptables rules when it received a message from hipd indicating that
the relay was enabled. While this supported dynamic initialisation,
the hipfw had already lowered its privileges and consquently executing
iptables failed.One possible way to solve the second issue would have been to require
omitting privilege downgrade when using the relay but this would have
been a bad idea from the view point of security. So, I decided to
change the dynamic relay configuration option into a static command
line option to avoid the chicken-and-egg problem with the hipfw. Now
the HIP vs. ESP relay functionality is also decoupled which I believe
is marginally more useful. This now identified in a more clear way in
the manual as well.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://staging/hipl