/openbmc/phosphor-certificate-manager/dist/busconfig/ |
H A D | phosphor-authority-cert-config.conf | 2e8fa88e Thu Jul 27 06:14:56 CDT 2023 Michal Orzel <michalx.orzel@intel.com> config: Change authority D-Bus names
Initially CA certificate management service was intended to support only LDAP usecases. However since some time this has become outdated, as certificates stored there might serve more purposes, such as SSL handshakes or mTLS connections. Therefore, I'm proposing to change service endpoint name from 'ldap' to something more generic, in order to avoid any confusion, that could come up when developing applications would like to utilize this feature.
Tested: Service present on DBus under new name, along with proper object paths.
root@bmc-maca4bf018cd442:~# busctl list | grep phosphor-cert ... xyz.openbmc_project.Certs.Manager.Authority.Truststore 256 phosphor-certif root :1.15 phosphor-certificate-manager@authority.service - - ...
root@bmc-maca4bf018cd442:~# busctl tree xyz.openbmc_project.Certs.Manager.Authority.Truststore `-/xyz `-/xyz/openbmc_project `-/xyz/openbmc_project/certs `-/xyz/openbmc_project/certs/authority `-/xyz/openbmc_project/certs/authority/truststore
Change-Id: I1d2c4ef9e7b4846951ce4dd52f869d7c64f3902d Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|
/openbmc/phosphor-certificate-manager/dist/env/ |
H A D | authority | 2e8fa88e Thu Jul 27 06:14:56 CDT 2023 Michal Orzel <michalx.orzel@intel.com> config: Change authority D-Bus names
Initially CA certificate management service was intended to support only LDAP usecases. However since some time this has become outdated, as certificates stored there might serve more purposes, such as SSL handshakes or mTLS connections. Therefore, I'm proposing to change service endpoint name from 'ldap' to something more generic, in order to avoid any confusion, that could come up when developing applications would like to utilize this feature.
Tested: Service present on DBus under new name, along with proper object paths.
root@bmc-maca4bf018cd442:~# busctl list | grep phosphor-cert ... xyz.openbmc_project.Certs.Manager.Authority.Truststore 256 phosphor-certif root :1.15 phosphor-certificate-manager@authority.service - - ...
root@bmc-maca4bf018cd442:~# busctl tree xyz.openbmc_project.Certs.Manager.Authority.Truststore `-/xyz `-/xyz/openbmc_project `-/xyz/openbmc_project/certs `-/xyz/openbmc_project/certs/authority `-/xyz/openbmc_project/certs/authority/truststore
Change-Id: I1d2c4ef9e7b4846951ce4dd52f869d7c64f3902d Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|
/openbmc/phosphor-certificate-manager/ |
H A D | meson.options | 2e8fa88e Thu Jul 27 06:14:56 CDT 2023 Michal Orzel <michalx.orzel@intel.com> config: Change authority D-Bus names
Initially CA certificate management service was intended to support only LDAP usecases. However since some time this has become outdated, as certificates stored there might serve more purposes, such as SSL handshakes or mTLS connections. Therefore, I'm proposing to change service endpoint name from 'ldap' to something more generic, in order to avoid any confusion, that could come up when developing applications would like to utilize this feature.
Tested: Service present on DBus under new name, along with proper object paths.
root@bmc-maca4bf018cd442:~# busctl list | grep phosphor-cert ... xyz.openbmc_project.Certs.Manager.Authority.Truststore 256 phosphor-certif root :1.15 phosphor-certificate-manager@authority.service - - ...
root@bmc-maca4bf018cd442:~# busctl tree xyz.openbmc_project.Certs.Manager.Authority.Truststore `-/xyz `-/xyz/openbmc_project `-/xyz/openbmc_project/certs `-/xyz/openbmc_project/certs/authority `-/xyz/openbmc_project/certs/authority/truststore
Change-Id: I1d2c4ef9e7b4846951ce4dd52f869d7c64f3902d Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|
H A D | README.md | 2e8fa88e Thu Jul 27 06:14:56 CDT 2023 Michal Orzel <michalx.orzel@intel.com> config: Change authority D-Bus names
Initially CA certificate management service was intended to support only LDAP usecases. However since some time this has become outdated, as certificates stored there might serve more purposes, such as SSL handshakes or mTLS connections. Therefore, I'm proposing to change service endpoint name from 'ldap' to something more generic, in order to avoid any confusion, that could come up when developing applications would like to utilize this feature.
Tested: Service present on DBus under new name, along with proper object paths.
root@bmc-maca4bf018cd442:~# busctl list | grep phosphor-cert ... xyz.openbmc_project.Certs.Manager.Authority.Truststore 256 phosphor-certif root :1.15 phosphor-certificate-manager@authority.service - - ...
root@bmc-maca4bf018cd442:~# busctl tree xyz.openbmc_project.Certs.Manager.Authority.Truststore `-/xyz `-/xyz/openbmc_project `-/xyz/openbmc_project/certs `-/xyz/openbmc_project/certs/authority `-/xyz/openbmc_project/certs/authority/truststore
Change-Id: I1d2c4ef9e7b4846951ce4dd52f869d7c64f3902d Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|
/openbmc/phosphor-certificate-manager/dist/ |
H A D | meson.build | 2e8fa88e Thu Jul 27 06:14:56 CDT 2023 Michal Orzel <michalx.orzel@intel.com> config: Change authority D-Bus names
Initially CA certificate management service was intended to support only LDAP usecases. However since some time this has become outdated, as certificates stored there might serve more purposes, such as SSL handshakes or mTLS connections. Therefore, I'm proposing to change service endpoint name from 'ldap' to something more generic, in order to avoid any confusion, that could come up when developing applications would like to utilize this feature.
Tested: Service present on DBus under new name, along with proper object paths.
root@bmc-maca4bf018cd442:~# busctl list | grep phosphor-cert ... xyz.openbmc_project.Certs.Manager.Authority.Truststore 256 phosphor-certif root :1.15 phosphor-certificate-manager@authority.service - - ...
root@bmc-maca4bf018cd442:~# busctl tree xyz.openbmc_project.Certs.Manager.Authority.Truststore `-/xyz `-/xyz/openbmc_project `-/xyz/openbmc_project/certs `-/xyz/openbmc_project/certs/authority `-/xyz/openbmc_project/certs/authority/truststore
Change-Id: I1d2c4ef9e7b4846951ce4dd52f869d7c64f3902d Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|
/openbmc/phosphor-certificate-manager/test/ |
H A D | certs_manager_test.cpp | 2e8fa88e Thu Jul 27 06:14:56 CDT 2023 Michal Orzel <michalx.orzel@intel.com> config: Change authority D-Bus names
Initially CA certificate management service was intended to support only LDAP usecases. However since some time this has become outdated, as certificates stored there might serve more purposes, such as SSL handshakes or mTLS connections. Therefore, I'm proposing to change service endpoint name from 'ldap' to something more generic, in order to avoid any confusion, that could come up when developing applications would like to utilize this feature.
Tested: Service present on DBus under new name, along with proper object paths.
root@bmc-maca4bf018cd442:~# busctl list | grep phosphor-cert ... xyz.openbmc_project.Certs.Manager.Authority.Truststore 256 phosphor-certif root :1.15 phosphor-certificate-manager@authority.service - - ...
root@bmc-maca4bf018cd442:~# busctl tree xyz.openbmc_project.Certs.Manager.Authority.Truststore `-/xyz `-/xyz/openbmc_project `-/xyz/openbmc_project/certs `-/xyz/openbmc_project/certs/authority `-/xyz/openbmc_project/certs/authority/truststore
Change-Id: I1d2c4ef9e7b4846951ce4dd52f869d7c64f3902d Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|
/openbmc/openbmc/meta-phosphor/recipes-phosphor/certificate/ |
H A D | phosphor-certificate-manager_git.bb | 7938f560 Wed Aug 30 04:16:34 CDT 2023 Michal Orzel <michalx.orzel@intel.com> meta-phosphor: bump authority changes
Bumping revisions in multiple projects in order to support changed name of authority certificate store service: - phosphor-certificate-manager: 2e8ef4ce...2e8fa88e Michal Orzel (1): config: Change authority D-Bus names
- bmcweb: 0a4776cf...b2254ccd Michal Orzel (1): Change authority D-Bus names
Myung Bae (1): Ignore Non-software-related events during Update
- phosphor-user-manager: 24637e5f...23f82c1e Michal Orzel (1): Change authority D-Bus names
Change-Id: If75951a40e7264102424e1d31a29f7c2e8a90f0e Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|
/openbmc/openbmc/meta-phosphor/recipes-phosphor/users/ |
H A D | phosphor-user-manager_git.bb | 7938f560 Wed Aug 30 04:16:34 CDT 2023 Michal Orzel <michalx.orzel@intel.com> meta-phosphor: bump authority changes
Bumping revisions in multiple projects in order to support changed name of authority certificate store service: - phosphor-certificate-manager: 2e8ef4ce...2e8fa88e Michal Orzel (1): config: Change authority D-Bus names
- bmcweb: 0a4776cf...b2254ccd Michal Orzel (1): Change authority D-Bus names
Myung Bae (1): Ignore Non-software-related events during Update
- phosphor-user-manager: 24637e5f...23f82c1e Michal Orzel (1): Change authority D-Bus names
Change-Id: If75951a40e7264102424e1d31a29f7c2e8a90f0e Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|
/openbmc/openbmc/meta-phosphor/recipes-phosphor/interfaces/ |
H A D | bmcweb_git.bb | 7938f560 Wed Aug 30 04:16:34 CDT 2023 Michal Orzel <michalx.orzel@intel.com> meta-phosphor: bump authority changes
Bumping revisions in multiple projects in order to support changed name of authority certificate store service: - phosphor-certificate-manager: 2e8ef4ce...2e8fa88e Michal Orzel (1): config: Change authority D-Bus names
- bmcweb: 0a4776cf...b2254ccd Michal Orzel (1): Change authority D-Bus names
Myung Bae (1): Ignore Non-software-related events during Update
- phosphor-user-manager: 24637e5f...23f82c1e Michal Orzel (1): Change authority D-Bus names
Change-Id: If75951a40e7264102424e1d31a29f7c2e8a90f0e Signed-off-by: Michal Orzel <michalx.orzel@intel.com>
|