[Opendnssec-develop] Re: common configuration file
Jakob Schlyter
jakob at kirei.se
Thu Apr 2 06:22:32 UTC 2009
On 30 mar 2009, at 14.05, Jakob Schlyter wrote:
> for a number of stuff, we need a common OpenDNSSEC configuration
> file that all our tools can use. things that would go into this
> would be some runtime parameters, like the configured pkcs11-libs etc.
dispite our less liking of XML, I've made small draft XML config that
I would like us to consider.
http://www.opendnssec.se/browser/docs/xml/opendnssec.xml
http://www.opendnssec.se/browser/docs/xml/opendnssec.rnc
this would allow us to parse all text input as XML. if we want to do
YAML it would look like this if I understand YAML correctly:
# OpenDNSSEC.yaml
#
HSM:
sca6000: { Module: /usr/lib/libpkcs11.so, PIN: test:1234 }
softHSM: { Module: /usr/local/lib/libsofthsm.so, PIN: test:5678 }
#
Enforcer:
Interval: 3600
KeygenInterval: 3
BackupDelay: 3
At first sight, it seems like the YAML is much more compact (and thus
better), but there are of course other issues lurking. I'd prefer XML
since it would be only one parser to link to (and we already depend on
XML for other stuff) and that we'd keep all our config-files in one
single format, but I really don't care that much if becomes and issue.
However, I do care that the parsing is done correctly, i.e. if we do
YAML we parse with a real YAML library (so we can do fancy data
structures like mappings of mappings) or we do XML (with XPath or the
like).
jakob
More information about the Opendnssec-develop
mailing list