From 311e4d2e1d142d3757cff82095d06cf6e674b417 Mon Sep 17 00:00:00 2001 From: jbjohnso Date: Mon, 25 Mar 2013 13:56:33 +0000 Subject: [PATCH] First pass at some xCAT powershell functions to build updatemynodestat/reportip/updateflag out of in name of removing compiled code git-svn-id: https://svn.code.sf.net/p/xcat/code/xcat-core/branches/2.8@15637 8638fb3e-16cb-4fca-ae20-7b5d299a9bcd --- .../share/xcat/netboot/windows/xcatlibs.psm1 | 20 +++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 xCAT-server/share/xcat/netboot/windows/xcatlibs.psm1 diff --git a/xCAT-server/share/xcat/netboot/windows/xcatlibs.psm1 b/xCAT-server/share/xcat/netboot/windows/xcatlibs.psm1 new file mode 100644 index 000000000..1b9c725cc --- /dev/null +++ b/xCAT-server/share/xcat/netboot/windows/xcatlibs.psm1 @@ -0,0 +1,20 @@ +# IBM(c) 2013 EPL license http://www.eclipse.org/legal/epl-v10.html +# This function specifically validates that the peer we are talking to is signed by the xCAT blessed CA and no other CA +Function xCAT-Verify-Cert ($sender, $cert, $chain, $polerrs) { + foreach ($cert in $chain.chainElements) { + $cathumb=$cert.Certificate.thumbprint + } + if ($scrpt:xcatcacert.thumbprint -ne $cathumb) { + return $false + } + return $true +} + +#we import the xCAT certificate authority into the appropriate scope +Function xCAT-Import-CA ( $certpath ) { + $script:xcatcacert=Import-Certificate -FilePath $certpath -CertStoreLocation Cert:\LocalMachine\root +} +Function xCAT-Remove-CA () { + rm cert:\localmachine\root\$script:xcatcacert.thumbprint +} +