Skip to content

admin policy integration #338

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

admin policy integration #338

wants to merge 1 commit into from

Conversation

@MayRosenbaum
Copy link
Contributor

@MayRosenbaum MayRosenbaum commented Nov 5, 2025

No description provided.

@MayRosenbaum
admin policy integration
60f14b9 
Signed-off-by: May.Buzaglo <May.Buzaglo@ibm.com>
@MayRosenbaum MayRosenbaum force-pushed the admin_policy_integration branch from 1f7df42 to 60f14b9 Compare November 5, 2025 22:05
DorKatzelnick
DorKatzelnick reviewed Nov 5, 2025
View reviewed changes
node/router/config_submitter.go
// check, which although not strictly necessary, is a good sanity check, in case the router
// has not been configured with the right cert material. The additional overhead of the signature
// check is negligible, as this is the re-config path and not the normal path.
_, err = cs.verifier.VerifyStructureAndClassify(configRequest)
Copy link
Contributor

@DorKatzelnick DorKatzelnick Nov 5, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the request's header type should be HeaderType_CONFIG now? we can check that

Copy link
Contributor Author

@MayRosenbaum MayRosenbaum Nov 6, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Correct.
protoutil.CreateSignedEnvelope outputs an envelope with header type HeaderType_CONFIG and then I create a request with that envelope.

What do you mean by check it ?
SigFilter / MaxBytesFilter are not responsible for checking the header type.

Copy link
Contributor

@DorKatzelnick DorKatzelnick Nov 6, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

VerifyStructureAndClassify should return this type in its first return value

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@DorKatzelnick DorKatzelnick DorKatzelnick left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@MayRosenbaum @DorKatzelnick