Anderson Sasaki
Anderson Sasaki
> > I want to enable Intel CET in GnuTLS, which uses the CRYPTOGAMS implementation. Comparing the code in this repository with the code available in OpenSSL, there are missing...
> > I want to enable Intel CET in GnuTLS, which uses the CRYPTOGAMS implementation. Comparing the code in this repository with the code available in OpenSSL, there are missing...
I would like to extend this to all roles and not only the agent. The configuration options names to set keys and certificates are super confusing and the comments don't...
I think most of the options related with keys/certificates configurations are confusing or not clear: In `cloud_verifier` section: - `tls_dir`: could be more explicit, like `ca_dir`, `cv_ca_dir`, or `verifier_ca_dir` -...
> > ``` > > * `registrar_my_cert`: could be `registrar_access_cert` or something similar. The confusing part is to understand why we have registrar options in `cloud_verifier` section. > > ```...
> Just to clarify, I wasn't suggesting using one certificate for all services. Just using that simple option name within a particular section. Also to clarify, I wasn't suggesting using...
@THS-on From my point of view, yes, #1068 addresses the issues pointed here
In my opinion, pinning to an older version, specially for security related packages, is dangerous and should be avoided if possible. AFAIK, the rust dependency in `cryptography` is a compilation-time...
> Really neat! I still need to review the code at full but IIUC the plan from now on is that, for any change in the configuration file will require...
I modified the `convert_config.py` script to apply each transformation for versions found in the `templates` folder in crescent order. I also added the `--version` option to specify a target version...