Vladimir Diaz
31c13410cb
Edit up to Delegate Hashed Bins section
2016-10-20 15:22:21 -04:00
Vladimir Diaz
8273db0b8d
Edit wrap-up section and format block of text
2016-10-20 15:12:32 -04:00
Vladimir Diaz
0106b01885
Add method to remove delegated roles, and fix issue with revoking a nested delegation
2016-10-20 15:01:01 -04:00
Vladimir Diaz
531b9ba61d
Edit up to the Delegations section (Need to fix code for nested delegations)
2016-10-20 12:50:52 -04:00
Vladimir Diaz
b154102bd0
Edit remaining parts of the Create Top-level Metadata section
2016-10-19 16:14:31 -04:00
Vladimir Diaz
d57412ec11
Switch some logger.info() statements to logger.debug() to clean up the console
2016-10-19 16:13:42 -04:00
Vladimir Diaz
52341b6355
Edit up to the Root section
2016-10-19 15:29:19 -04:00
Vladimir Diaz
1a6480764f
Format text in Keys section
2016-10-19 14:01:41 -04:00
Vladimir Diaz
e268b2f9e9
Edit the Keys section
2016-10-19 13:53:20 -04:00
Vladimir Diaz
b921372c1f
Replace instances of ED25519 with Ed25519 in messages
2016-10-19 13:51:14 -04:00
Vladimir Diaz
76dc0a6a0d
Use pyca-cryptography by default
2016-10-19 13:37:10 -04:00
Vladimir Diaz
5fbdd14399
Remove section for virtual machine and installation instructions
2016-10-19 13:00:31 -04:00
Vladimir Diaz
a5146c5d1b
Edit overview section
2016-10-19 12:59:22 -04:00
Vladimir Diaz
22fa839ea3
Add sections to repository tool doc for updater attacks and how to perform an update
2016-10-19 11:21:05 -04:00
Vladimir Diaz
e588a61b4f
Merge pull request #379 from vladimir-v-diaz/ecordell-root-versioning
...
Various changes to repository writting
2016-10-18 14:08:31 -04:00
Vladimir Diaz
8eac568c92
Partial implmentation for issue #374
...
If writting a consistent snapshot, the snapshot should be written first and and then a copy or link to it should be created.
2016-10-18 13:31:37 -04:00
Vladimir Diaz
70fc8dce36
Resolve merge conflicts with upstream and ecordell-root-versioning
2016-10-18 10:28:04 -04:00
Vladimir Diaz
58370a5a2f
Append '_integration.py' to the module name of the integration tests.
2016-10-17 16:56:08 -04:00
Vladimir Diaz
18619f2da7
Rename function: _verify_next_version_of_root() --> _verify_root_chain_link()
2016-10-17 16:26:24 -04:00
Vladimir Diaz
1cbf89e4da
Add some comments/concerns in updater.refresh()
2016-10-17 16:22:12 -04:00
Vladimir Diaz
9e2fe125ee
Remove code no longer needed that fetched root and snapshot by digest (they are now fetched by version number).
2016-10-17 16:08:46 -04:00
Vladimir Diaz
8882dc5b7b
Merge branch 'root-versioning' of https://github.com/ecordell/tuf into ecordell-root-versioning
...
Conflicts:
tests/test_key_revocation.py
tests/test_replay_attack.py
tests/test_repository_tool.py
tests/test_updater.py
tuf/formats.py
tuf/repository_lib.py
2016-10-17 15:57:48 -04:00
Sebastien Awwad
5e0574f3f7
minor readme correction: libffi typo
2016-10-14 14:05:32 -04:00
Vladimir Diaz
3dfb22cfb7
Update setup.py
...
Add 'cryptography' to tuf[tools]
2016-10-14 11:27:13 -04:00
Vladimir Diaz
ab26a216a8
Update README.rst
2016-10-12 10:35:04 -04:00
Trishank Karthik Kuppusamy
8fddd7c023
Include installation instructions for Fedora
2016-10-11 15:39:40 -04:00
Vladimir Diaz
b03deee874
Modify the way slow retrieval errors are raised and detected.
...
Potential slow retrieval errors are raised for safe downloads (strict check on file size) and not for unsafe (a file size less than an upper limit). Slow retrieval errors should always be prevented
2016-10-10 17:34:00 -04:00
Vladimir Diaz
d72f733862
Do not raise tuf.SlowRetrievalError in download.py
...
(at least until the tests are updated).
2016-10-07 17:24:54 -04:00
Vladimir Diaz
0a84a4e7d6
Throw an explicit exception if streamed data occurs at a slow enough rate
2016-10-07 11:34:20 -04:00
Vladimir Diaz
f2bd05bcbe
Prevent rudimentary client module from refetching root.json
...
Not re-fetching root simplifies examples in documentation and attack simulations
2016-10-07 11:33:01 -04:00
Vladimir Diaz
8cfaf2ccb6
Rename tuf.py to tufcli.py to prevent name clash
2016-10-07 11:27:52 -04:00
Vladimir Diaz
3ab08e52f6
Update tuf-spec.txt
...
Distinguish the "signed" portion of a metadata file from the entire file itself. Addressing comment provided by @HuKeping
2016-10-07 10:57:19 -04:00
Vladimir Diaz
f50fa2a4fe
Merge pull request #376 from theupdateframework/fix_key_typos
...
DOC: Fixes PBKDF1 typo throughout modules
2016-10-07 10:26:18 -04:00
Santiago Torres
a96f0036e3
DOC: Fixes PBKDF1 typo throughout modules
...
tuf/keys.py, pyca_crypto_keys.py and pycrypto_keys.py was missing the
"D" on PBKDF1.
2016-10-02 18:21:09 -04:00
Vladimir Diaz
3ec0e517e6
Update README.rst
...
Update list of non-Python dependencies that should be installed
2016-09-30 14:09:44 -04:00
Vladimir Diaz
8b456211e5
Merge branch 'develop' of github.com:theupdateframework/tuf into develop
2016-09-21 09:24:45 -04:00
Vladimir Diaz
e1debf8ea9
Improve code coverage for repository_tool.py
2016-09-21 09:17:37 -04:00
Vladimir Diaz
402057e716
Group load_pem_public_key() exceptions in verify_rsa_signature()
2016-09-20 11:42:01 -04:00
Vladimir Diaz
070c9e0149
Test for invalid keyid in remove_invalid_and_duplicate_signatures()
2016-09-20 11:40:38 -04:00
Vladimir Diaz
35d478f1c2
Cover remaining code coverage for repository_lib.py
2016-09-20 11:02:53 -04:00
Vladimir Diaz
d75d25a4e6
Implement pyca_crypto_keys.py's create_rsa_encrypted_pem and improve code coverage for it
2016-09-19 17:21:33 -04:00
Evan Cordell
0e93c3a7d2
Enforce root version signature chaining in client updater
2016-09-19 15:18:33 -04:00
Evan Cordell
a11709000d
Add root versioning for root key rotation
2016-09-19 15:18:20 -04:00
Vladimir Diaz
383a99b6ad
Don't list compressed versions of rolenames in snapshot.json
2016-09-15 16:34:39 -04:00
Vladimir Diaz
b5a0cc413b
Add test repository
...
compressed metadata was incorrectly listed in snapshot.json. List on roles with '.json' extension
2016-09-15 16:33:20 -04:00
Vladimir Diaz
83eb466055
Add repository.writeall() and repository.write(), and rename backtrack to terminating
2016-09-15 15:27:19 -04:00
Vladimir Diaz
feb2cd0df4
Update tests to improve code coverage and following the changes to repository write and backtracking
2016-09-15 15:24:00 -04:00
Vladimir Diaz
26016479e9
Add test repository following changes to repository writing and backtracking
2016-09-15 15:19:27 -04:00
Vladimir Diaz
5d2c8fdc76
Update tuf-spec.txt
...
Remove mention of a "private" dictionary key in metadata. Public TUF metadata consumed by clients would never include a "private" field, so it shouldn't be specified here in the specification.
2016-09-15 14:23:44 -04:00
Vladimir Diaz
f8e56d29e6
Add favicons
...
Add two favicons that are easier to see in the browser.
2016-09-02 10:22:58 -04:00