[taler-grid5k] 13/141: add bind

[gnunet]

This is an automated email from the git hooks/post-receive script.

marco-boss pushed a commit to branch master
in repository grid5k.

commit 40610a22faafdbffd6cf796b6281a469943467da
Author: Boss Marco <bossm8@bfh.ch>
AuthorDate: Sun Oct 3 19:58:22 2021 +0200

    add bind
---
 etc/bind/named.conf.local | 12 ++++++++++++
 etc/bind/zones/perf.taler | 15 +++++++++++++++
 jfed/README               |  1 +
 jfed/env                  |  2 ++
 jfed/setup.sh             |  7 +++++++
 jfed/taler-perf.rspec     |  6 +++---
 scripts/dns.sh            |  5 ++++-
 7 files changed, 44 insertions(+), 4 deletions(-)

diff --git a/etc/bind/named.conf.local b/etc/bind/named.conf.local
new file mode 100755
index 0000000..eef37eb
--- /dev/null
+++ b/etc/bind/named.conf.local
@@ -0,0 +1,12 @@
+key "ddns-key.perf.taler" {
+  algorithm hmac-sha256;
+  secret "<DNS_KEY_HERE>";
+};
+
+zone "perf.taler" {
+  type master;
+  file "/etc/bind/zones/perf.taler";
+  update-policy {
+    grant ddns-key.perf.taler subdomain perf.taler. ANY;
+  };
+};
diff --git a/etc/bind/zones/perf.taler b/etc/bind/zones/perf.taler
new file mode 100755
index 0000000..e691a0a
--- /dev/null
+++ b/etc/bind/zones/perf.taler
@@ -0,0 +1,15 @@
+$ORIGIN .
+$TTL 60 ; 1 minute
+perf.taler IN SOA ns1.perf.taler. admin.perf.taler. (
+    202110031;
+    604800;
+    86400;
+    2419200;
+    604800; 
+    )
+
+  NS ns1.perf.taler.
+
+$ORIGIN perf.taler.
+
+ns1 A 127.0.0.1
diff --git a/jfed/README b/jfed/README
index 5a7a239..54874d6 100755
--- a/jfed/README
+++ b/jfed/README
@@ -6,6 +6,7 @@ All files needed to run the experiment can be found inside the 
jfed/ directory:
 Steps:
   * cp env .env
   * edit .env and define the specified variables
+  * DNS_HMAC_SHA256 can be generated with tsig-keygen from bind9 package (use 
the secret only)
   * in the jfed experimenter gui click 'Open ESpec'
   * specify the experiment name and time
 
diff --git a/jfed/env b/jfed/env
old mode 100644
new mode 100755
index d03a43e..d095b5a
--- a/jfed/env
+++ b/jfed/env
@@ -11,3 +11,5 @@ DB_PORT=
 DB_NAME=
 DB_USER=
 DB_PASSWORD=
+
+DNS_HMAC_SHA256=
diff --git a/jfed/setup.sh b/jfed/setup.sh
index 0a085fe..046d2ce 100755
--- a/jfed/setup.sh
+++ b/jfed/setup.sh
@@ -13,6 +13,13 @@ cd ${G5K_HOME} && git checkout node-setup && git pull && cd
 # Override default /etc/ with the one from this Git.
 cp -r ${G5K_HOME}/etc/* /etc
 
+cat << EOF > /root/ddns.key 
+key "ddns-key.perf.taler" {
+  algorithm hmac-sha256;
+  secret "${DNS_HMAC_SHA256}";
+};
+EOF
+
 HOST=$(hostname)
 
 case "$HOST" in 
diff --git a/jfed/taler-perf.rspec b/jfed/taler-perf.rspec
index e056a9d..37e5eac 100644
--- a/jfed/taler-perf.rspec
+++ b/jfed/taler-perf.rspec
@@ -1,5 +1,5 @@
 <?xml version='1.0'?>
-<rspec xmlns="http://www.geni.net/resources/rspec/3"; type="request" 
generated_by="jFed RSpec Editor" generated="2021-10-03T16:29:37.654+02:00" 
xmlns:emulab="http://www.protogeni.net/resources/rspec/ext/emulab/1"; 
xmlns:delay="http://www.protogeni.net/resources/rspec/ext/delay/1"; 
xmlns:jfed-command="http://jfed.iminds.be/rspec/ext/jfed-command/1"; 
xmlns:client="http://www.protogeni.net/resources/rspec/ext/client/1"; 
xmlns:jfed-ssh-keys="http://jfed.iminds.be/rspec/ext/jfed-ssh-keys/1"; xmlns: 
[...]
+<rspec xmlns="http://www.geni.net/resources/rspec/3"; type="request" 
generated_by="jFed RSpec Editor" generated="2021-10-03T19:51:28.760+02:00" 
xmlns:emulab="http://www.protogeni.net/resources/rspec/ext/emulab/1"; 
xmlns:delay="http://www.protogeni.net/resources/rspec/ext/delay/1"; 
xmlns:jfed-command="http://jfed.iminds.be/rspec/ext/jfed-command/1"; 
xmlns:client="http://www.protogeni.net/resources/rspec/ext/client/1"; 
xmlns:jfed-ssh-keys="http://jfed.iminds.be/rspec/ext/jfed-ssh-keys/1"; xmlns: 
[...]
   <node client_id="DB" exclusive="true" 
component_manager_id="urn:publicid:IDN+am.grid5000.fr+authority+am" 
component_id="urn:publicid:IDN+am.grid5000.fr+node+%2F3.0%2Fsites%2Fnancy%2Fclusters%2Fgros%2Fnodes%2Fgros-38">
     <sliver_type name="raw-pc">
       <disk_image 
name="http://public.lyon.grid5000.fr/~bfhch01/taler-debian11.dsc"/>
@@ -21,14 +21,14 @@
     <hardware_type name="gros-nancy"/>
     <location xmlns="http://jfed.iminds.be/rspec/ext/jfed/1"; x="202.5" 
y="465.5"/>
   </node>
-  <node client_id="Bank" exclusive="true" 
component_manager_id="urn:publicid:IDN+am.grid5000.fr+authority+am" 
component_id="urn:publicid:IDN+am.grid5000.fr+node+%2F3.0%2Fsites%2Fnancy%2Fclusters%2Fgros%2Fnodes%2Fgros-37">
+  <node client_id="Bank" exclusive="true" 
component_manager_id="urn:publicid:IDN+am.grid5000.fr+authority+am" 
component_id="urn:publicid:IDN+am.grid5000.fr+node+%2F3.0%2Fsites%2Flyon%2Fclusters%2Fnova%2Fnodes%2Fnova-16">
     <sliver_type name="raw-pc">
       <disk_image 
name="http://public.lyon.grid5000.fr/~bfhch01/taler-debian11.dsc"/>
     </sliver_type>
     <hardware_type name="grcinq-nancy"/>
     <location xmlns="http://jfed.iminds.be/rspec/ext/jfed/1"; x="295.0" 
y="249.5"/>
   </node>
-  <node client_id="DNS" exclusive="true" 
component_manager_id="urn:publicid:IDN+am.grid5000.fr+authority+am" 
component_id="urn:publicid:IDN+am.grid5000.fr+node+%2F3.0%2Fsites%2Fnancy%2Fclusters%2Fgros%2Fnodes%2Fgros-36">
+  <node client_id="DNS" exclusive="true" 
component_manager_id="urn:publicid:IDN+am.grid5000.fr+authority+am" 
component_id="urn:publicid:IDN+am.grid5000.fr+node+%2F3.0%2Fsites%2Fsophia%2Fclusters%2Fuvb%2Fnodes%2Fuvb-44">
     <sliver_type name="raw-pc">
       <disk_image 
name="http://public.lyon.grid5000.fr/~bfhch01/taler-debian11.dsc"/>
     </sliver_type>
diff --git a/scripts/dns.sh b/scripts/dns.sh
index 5cba4ad..38c45e9 100755
--- a/scripts/dns.sh
+++ b/scripts/dns.sh
@@ -1,3 +1,6 @@
 #!/bin/bash
 
-systemctl enable bind9
+sed -i "s/<DNS_KEY_HERE>/${DNS_HMAC_SHA256}/g" \
+    /etc/bind/named.conf.local
+
+systemctl start named.service

-- 
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.