[Planetlab-devel] opening up GetSliceTicket()
Marc E. Fiuczynski
mef at CS.Princeton.EDU
Wed May 30 11:35:44 EDT 2007
> We'd like to have the public keys that are allowed to log into a slice
> available from within the slice. We don't really care if the
> mechanism that provides this is a call to the node manager or just
> that the authorized_keys file is linked into the slice.
Maybe a local call to NM is the right approach. I believe there already
is a call to map xid<->slicename. So the basic scaffolding to
communicate with NM from a slice exists, and presumable this could be
extended to include a slicename->keys call. However, you'd have to do
this periodically to check whether users have been added/deleted from a
slice. Polling NM in such a way seems suboptimal.
We used to automount .ssh into /vservers/$slice/home/$slice/.ssh. Not
sure why we got rid of it, but I suspect its because we couldn't get it
to work reliably for some reason. Will dig further.
Marc
More information about the Devel
mailing list