1. 28 Jun, 2002 1 commit
  2. 11 Jun, 2002 2 commits
    • Chad Barb's avatar
      Minor fix. · 64eab53c
      Chad Barb authored
      64eab53c
    • Chad Barb's avatar
      · 5470d280
      Chad Barb authored
      Changed default path, made it a #define.
      5470d280
  3. 04 Jun, 2002 1 commit
  4. 05 Apr, 2002 1 commit
    • Chad Barb's avatar
      Added SSL to capture (enabled with -DWITHSSL) · 2e536ba3
      Chad Barb authored
      To tip (or tiptunnel on a normal acl,) capture behaves the same.
      However, if a client connects and presents "USESSL" as the first six characters of their
      connection key, both sides initiate SSL negotiation.
      The server then attempts to get the key again. The second one is used for the check.
      
      SSL initialization is done on the first attempt by a client to connect via SSL.
      Capture assumes $(prefix)/etc/capture/cert.pem contains its certificate unless
      the '-c <certfile>' option is used.. if the certificate is not found or invalid, that
      connection fails, but normal connections will still succeed (and it will try to find the file
      again, next time an SSL connection is attempted.)
      
      On the client side, tiptunnel only uses ssl if there is a "ssl-server-cert:"
      property in the acl file. This is the SHA hash of the certificate that the capture server is
      expected to have (in hex.) If the certificate presented by the server does not hash to the
      same value, the connection is dropped.
      2e536ba3
  5. 11 Feb, 2002 1 commit
  6. 10 Jan, 2002 1 commit
    • Leigh Stoller's avatar
      A set of capture/capserver/DB changes. · 8ec05f0d
      Leigh Stoller authored
      Capserver and capture now handshake the owner/group of the tipline.
      Owner is defaults to root, and the group defaults to root when the
      node is not allocated. Capture will do the chmod after the handshake,
      so if boss is down when capture starts, the acl/run file will get 0,0,
      but will get the proper owner/group later after its able to handshake.
      As a result, console_setup.proxy was trimmed down and cleaned up a
      bit, since it no longer has to muck with some of this stuff.
      
      A second change was to support multiple tiplines per node. I have
      modified the tiplines table as such:
      
      	| Field   | Type        | Null | Key | Default | Extra |
      	+---------+-------------+------+-----+---------+-------+
      	| tipname | varchar(32) |      | PRI |         |       |
      	| node_id | varchar(10) |      |     |         |       |
      	| server  | varchar(64) |      |     |         |       |
      
      That is, the name of the tip device (given to capture) is the unique
      key, and there can be multiple tiplines associated with each node.
      console_setup now uses the tiplines table to determine what tiplines
      need to be reset; used to be just the name of the node_id passed into
      console_setup. Conversely, capserver uses the tipname to map back to
      the node_id, so that it can get the owner/group from the reserved
      table.
      
      I also removed the shark hack from nalloc, nfree, and console_reset,
      since there is no longer any need for that; this can be described
      completely now with tiplines table entries. If we ever bring the
      sharks back, we will need to generate new entries. Hah!
      8ec05f0d
  7. 09 Jan, 2002 2 commits
  8. 29 Aug, 2001 1 commit
    • Leigh Stoller's avatar
      Fixup capture/tip/power_rpc27 so that capture returns a positive · ed55f418
      Leigh Stoller authored
      ack/nak for a connection so that the connecting process knows what the
      hell is going on. Turned out to be necessary for power control since
      we do that in parallel, and because it stays busy for 10 seconds on
      each power control. I think we will end up revisiting this at some
      point, adding blocking connections instead of connect/fail status.
      ed55f418
  9. 28 Aug, 2001 1 commit
  10. 22 Aug, 2001 1 commit
  11. 16 Aug, 2001 1 commit
  12. 14 Aug, 2001 1 commit
    • Leigh Stoller's avatar
      Move .acl file into tiplogs directory since nothing in /dev/tip · 3a67ca5f
      Leigh Stoller authored
      is actually used anymore.
      Added a "generic" entry to /etc/remote so that we do not need tip
      entries for each node; they all look the same anyway.
      Change tip to lookup up generic /etc/remote entry, just to make
      tip happy. The acl file comes from the tiplogs directory, as
      set in the header file.
      3a67ca5f
  13. 13 Aug, 2001 2 commits
  14. 09 Aug, 2001 1 commit
  15. 24 Jul, 2001 1 commit
    • Leigh Stoller's avatar
      Checkpoint new version of capture/tip that is sockets based instead · 34499cb6
      Leigh Stoller authored
      of pty/tty based (since they have several annoying problems
      associated). Note that permission is granted via the use of an "acl"
      file; /dev/tip/machine.acl, which must be set to the group of the
      project the node is in, so the user can read out the process id number
      and the random bits that are used by capture to grant permission to
      use (tip sends the random bits across first thing). This handshake is
      due to change to a request/challenge scheme as described by Dave in
      email to the testbed list.
      34499cb6
  16. 26 Jun, 2001 2 commits
  17. 29 Mar, 2001 1 commit
  18. 05 Jan, 2001 1 commit
  19. 03 Jan, 2001 1 commit
  20. 02 Jan, 2001 4 commits
  21. 30 Dec, 2000 1 commit
  22. 26 Dec, 2000 1 commit
    • Leigh Stoller's avatar
      3 changes. First merge some of Mike's changes from the capture source · 59abe444
      Leigh Stoller authored
      code I found in /foo/x/mike/src/capture/capture.c. Second, add a -r
      option to open up a second log file called the "run" file, which is
      intended to be used for the experiment session log. This log is
      restarted with a SIGUSR1. Third, add SIGUSR2 handler to close the
      pty side of the capture, which has the nice side effect of causing tip
      to exit gracefully.
      59abe444
  23. 10 Oct, 2000 1 commit
    • David G Andersen's avatar
      Initial import of the "capture" source into the testbed repository. · fec832e8
      David G Andersen authored
      Note that this has a hardcoded value for NBPG, a define that's only
      present in the digiboard headers.  In the interest of minimal source
      code changes (heh, heh, heh) I left it alone. :p
      
      Works on *bsd, and now Linux.  Manpage included at no charge,
      though if someone wants to figure out why the manpage only
      works under BSD ("Because Dave is an idiot" is not an acceptable
      answer, true as it may be), that'd be cool.
      fec832e8