ostree

shaba/ostree

Fork 0

mirror of https://github.com/ostreedev/ostree.git synced 2024-12-22 17:35:55 +03:00

Commit Graph

Author	SHA1	Message	Date
Joseph Marrero	581a58067b	Update FSF license notices to use URL instead of address	2021-12-07 08:34:25 -05:00
Colin Walters	1f3c8c5b3d	sign/ed25519: Output failed signatures in error message To aid debuggability, when we find a commit that isn't signed by our expected key, output a specific error message with the key. (And then add code to switch to just printing the count beyond 3 because the test suite injects 100 keys and hopefully no one ever actually does that)	2020-06-16 18:20:54 +03:00
Colin Walters	40d6f6b5ee	tests: Add a pre-signed-pull.sh test I'm thinking about adding an implementation of ed25519 signatures with OpenSSL (so we can ship the feature with Fedora CoreOS without requiring an additional library) and in preparation for that it's essential that we validate that libsodium-generated signatures and OpenSSL-generated signatures are compatible. I don't know if they are yet actually, but the goal of this new test is to add a pre-generated repository with a signed commit generated by libsodium. This will catch if e.g. there's ever a change in libsodium, or if existing libsodium implementation versions (e.g. the one in Debian) might differ from what we ship here.	2020-06-11 18:56:35 +00:00

Author

SHA1

Message

Date

Joseph Marrero

581a58067b

Update FSF license notices to use URL instead of address

2021-12-07 08:34:25 -05:00

Colin Walters

1f3c8c5b3d

sign/ed25519: Output failed signatures in error message

To aid debuggability, when we find a commit that isn't signed
by our expected key, output a specific error message with the
key.

(And then add code to switch to just printing the count beyond 3
 because the test suite injects 100 keys and hopefully no one
 ever actually does that)

2020-06-16 18:20:54 +03:00

Colin Walters

40d6f6b5ee

tests: Add a pre-signed-pull.sh test

I'm thinking about adding an implementation of ed25519 signatures
with OpenSSL (so we can ship the feature with Fedora CoreOS
without requiring an additional library) and in preparation for
that it's essential that we validate that libsodium-generated
signatures and OpenSSL-generated signatures are compatible.

I don't know if they are yet actually, but the goal of this
new test is to add a pre-generated repository with a signed
commit generated by libsodium.

This will catch if e.g. there's ever a change in libsodium,
or if existing libsodium implementation versions (e.g. the
one in Debian) might differ from what we ship here.

2020-06-11 18:56:35 +00:00

3 Commits