add interface cert to trusted roots list

author Tony Mack <tmack@paris.CS.Princeton.EDU>

Sun, 20 Nov 2011 22:44:06 +0000 (17:44 -0500)

committer Tony Mack <tmack@paris.CS.Princeton.EDU>

Sun, 20 Nov 2011 22:44:06 +0000 (17:44 -0500)
author Tony Mack <tmack@paris.CS.Princeton.EDU>
Sun, 20 Nov 2011 22:44:06 +0000 (17:44 -0500)
committer Tony Mack <tmack@paris.CS.Princeton.EDU>
Sun, 20 Nov 2011 22:44:06 +0000 (17:44 -0500)
diff --git a/sfa/server/sfa-start.py b/sfa/server/sfa-start.py

index abe8c00..8c1b1d5 100755 (executable)
--- a/sfa/server/sfa-start.py
+++ b/sfa/server/sfa-start.py
@@ -40,7 +40,8 @@ from sfa.util.sfalogging import logger
  from sfa.util.xrn import get_authority, hrn_to_urn
  from sfa.util.config import Config
  import sfa.client.xmlrpcprotocol as xmlrpcprotocol
-
+from sfa.trust.gid import GID
+from sfa.trust.trustedroots import TrustedRoots
  from sfa.trust.certificate import Keypair, Certificate
  from sfa.trust.hierarchy import Hierarchy
  from sfa.trust.gid import GID
@@ -189,6 +190,9 @@ def main():
      server_key_file = auth_info.get_privkey_filename()
      server_cert_file = auth_info.get_gid_filename()
  
+    # ensure interface cert is present in trusted roots dir
+    trusted_roots = TrustedRoots(config.get_trustedroots_dir())
+    trusted_roots.add_gid(GID(filename=server_cert_file))
      if (options.daemon):  daemon()
      
      if options.trusted_certs:
author	Tony Mack <tmack@paris.CS.Princeton.EDU>
	Sun, 20 Nov 2011 22:44:06 +0000 (17:44 -0500)
committer	Tony Mack <tmack@paris.CS.Princeton.EDU>
	Sun, 20 Nov 2011 22:44:06 +0000 (17:44 -0500)