logger.log("sliverauth: plc-instantiated slice %s does not yet exist. IGNORING!" % sliver['name'])
continue
- manage_hmac (plc, sliver)
- manage_sshkey (plc, sliver)
+ for chunk in sliver['attributes']:
+ if chunk['tagname']=='enable_hmac':
+ manage_hmac (plc, sliver)
+ elif chunk['tagname']=='omf_control':
+ manage_sshkey (plc, sliver)
def SetSliverTag(plc, slice, tagname, value):
# keyfile="/vservers/%s/home/%s/.ssh/id_rsa"%(sliver['name'],sliver['name'])
# we're now storing this in the same place as the authorized_keys, which in turn
# gets mounted to the user's home directory in the sliver
- keyfile="/home/%s/.ssh/id_rsa"%(sliver['name'],sliver['name'])
+ keyfile="/home/%s/.ssh/id_rsa"%(sliver['name'])
pubfile="%s.pub"%keyfile
dotssh=os.path.dirname(keyfile)
# create dir if needed
logger.log_call( [ 'ssh-keygen', '-t', 'rsa', '-N', '', '-f', keyfile , '-C', comment] )
os.chmod (keyfile, 0400)
logger.log_call ( [ 'chown', "%s:slices"%(sliver['name']), keyfile, pubfile ] )
- return file(pubfile).read()
+ return file(pubfile).read().strip()
# a sliver can get created, deleted and re-created
# the slice having the tag is not sufficient to skip key geneneration