Elgato_dark/python-tuf
1
0
Fork 0
mirror of https://github.com/theupdateframework/python-tuf synced 2026-05-24 10:08:28 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Merge pull request #1016 from MVrachev/refactor-format-metadata-to-key

Browse source 
Refactor to use changed format metadata to key
This commit is contained in:
Joshua Lock 2020-08-26 15:05:36 +01:00 committed by GitHub
commit 28f0b676a1
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
5 changed files with 9 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
setup.py
View file

@ -117,7 +117,7 @@
'iso8601>=0.1.12',
'requests>=2.19.1',
'six>=1.11.0',
'securesystemslib>=0.15.0'
'securesystemslib>=0.16.0'
],
tests_require = [
'mock; python_version < "3.3"'

3
tuf/client/updater.py
View file

@ -952,7 +952,8 @@ def _import_delegations(self, parent_role):
# We specify the keyid to ensure that it's the correct keyid
# for the key.
try:
key, _ = securesystemslib.keys.format_metadata_to_key(keyinfo, keyid)
key, _ = securesystemslib.keys.format_metadata_to_key(keyinfo, keyid,
keyid_hash_algorithms=keyinfo['keyid_hash_algorithms'])
tuf.keydb.add_key(key, repository_name=self.repository_name)

3
tuf/keydb.py
View file

@ -122,7 +122,8 @@ def create_keydb_from_root_metadata(root_metadata, repository_name='default'):
# format_metadata_to_key() uses the provided keyid as the default keyid.
# All other keyids returned are ignored.
key_dict, _ = securesystemslib.keys.format_metadata_to_key(key_metadata, keyid)
key_dict, _ = securesystemslib.keys.format_metadata_to_key(key_metadata,
keyid, keyid_hash_algorithms=key_metadata['keyid_hash_algorithms'])
# Make sure to update key_dict['keyid'] to use one of the other valid
# keyids, otherwise add_key() will have no reference to it.

3
tuf/repository_lib.py
View file

@ -645,7 +645,8 @@ def _load_top_level_metadata(repository, top_level_filenames, repository_name):
for keyid, key_metadata in six.iteritems(targets_metadata['delegations']['keys']):
# Use the keyid found in the delegation
key_object, _ = securesystemslib.keys.format_metadata_to_key(key_metadata, keyid)
key_object, _ = securesystemslib.keys.format_metadata_to_key(key_metadata,
keyid, keyid_hash_algorithms=key_metadata['keyid_hash_algorithms'])
# Add 'key_object' to the list of recognized keys. Keys may be shared,
# so do not raise an exception if 'key_object' has already been loaded.

8
tuf/repository_tool.py
View file

@ -3187,12 +3187,8 @@ def load_repository(repository_directory, repository_name='default',
# The repo may have used hashing algorithms for the generated keyids
# that doesn't match the client's set of hash algorithms. Make sure
# to only used the repo's selected hashing algorithms.
hash_algorithms = securesystemslib.settings.HASH_ALGORITHMS
securesystemslib.settings.HASH_ALGORITHMS = \
key_metadata['keyid_hash_algorithms']
key_object, keyids = \
securesystemslib.keys.format_metadata_to_key(key_metadata)
securesystemslib.settings.HASH_ALGORITHMS = hash_algorithms
key_object, keyids = securesystemslib.keys.format_metadata_to_key(key_metadata,
keyid_hash_algorithms=key_metadata['keyid_hash_algorithms'])
try:
for keyid in keyids: # pragma: no branch
key_object['keyid'] = keyid