Elgato_dark/python-tuf
1
0
Fork 0
mirror of https://github.com/theupdateframework/python-tuf synced 2026-05-24 10:08:28 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
1704 commits 28 branches 35 tags 23 MiB
Commit graph

198 commits

Author SHA1 Message Date
Vladimir Diaz
9c48d9c002 Remove merge conflict markers 2016-07-28 10:26:10 -04:00
Vladimir Diaz
c3a5af09b3 Merge branch 'develop' of github.com:theupdateframework/tuf into develop 
Conflicts:
	tuf/client/updater.py
 2016-07-27 17:08:23 -04:00
Vladimir Diaz
4ccd446901 Return unique list in _targets_of_role() 
Previous code updated the 'targets' argument with new values, but the calling code treated the return value as unique
 2016-07-27 17:02:04 -04:00
Vladimir Diaz
70cc1b8abd Clear roledb and keydb of 'test_repository' entries after each test case 2016-07-11 13:53:16 -04:00
Vladimir Diaz
54f14552a5 Merge branch 'remaining-1.0-tasks' of github.com:vladimir-v-diaz/tuf into keyids_multihash_algorithms 2016-06-09 11:03:25 -04:00
Vladimir Diaz
8bd9ca8a8d Minor edits to PR #318 (prevent cycles when visiting roles) 2016-06-09 10:58:19 -04:00
Vladimir Diaz
b9e83a2e8a Fix conflict 2016-06-09 10:53:39 -04:00
Vladimir Diaz
a048ca1630 Merge branch 'tighten-preorder-dfs' of https://github.com/trishankkarthik/tuf into trishankkarthik-tighten-preorder-dfs 2016-06-09 10:49:11 -04:00
Vladimir Diaz
685e6a2d33 Proof of concept 
Initial implementation: key IDs may be generated with multiple hash algorithms
 2016-05-18 16:12:58 -04:00
Vladimir Diaz
1bf5aa2396 Add repository_name parameters to sig.py 2016-05-16 14:26:38 -04:00
Vladimir Diaz
e3a1544070 Begin implementation changes to address issue with a global role and key database 2016-05-06 12:13:57 -04:00
Vladimir Diaz
6aac27e69c Fix typo 2016-04-14 11:31:02 -04:00
Vladimir Diaz
f2c3e09bf2 Fix remaining issues with previous implementation of _update_metadata_via_fileinfo() 2016-04-14 11:22:13 -04:00
Vladimir Diaz
c017173bfb Add function to update metadata via fileinfo (needed for root and snapshot). 2016-04-14 10:37:57 -04:00
Vladimir Diaz
3f42feba31 Add functions to update and detect fileinfo changes for root and snapshot 2016-04-14 09:08:57 -04:00
Vladimir Diaz
b8ce4bbfcd Implement changes to write and load the new format of snapshot.json 
The repository tools should properly write and load consistent versions of root.json and snapshot.json.  Version numbers were previously prepended to these two roles.
 2016-04-14 08:13:50 -04:00
Vladimir Diaz
22b42e97b5 Remove obsolete method: refresh_targets_metadata_chain() 2016-04-06 10:54:45 -04:00
Vladimir Diaz
90d0d5c49a Fix remaining updater.py test failures 2016-04-05 20:12:31 -04:00
Vladimir Diaz
e02f2f54a9 Minor comment fix and cosmetic edit 2016-03-31 17:26:10 -04:00
Vladimir Diaz
7196e547af Implement changes to allow for expected verification of target paths 
Following the change where a repository resembles a graph of delegations, we now verify target paths (according to some parent role) when we visit child roles
 2016-03-31 13:08:04 -04:00
Vladimir Diaz
bc8f51b9dd Update updater.py to remove the use of remove_delegated_roles() 2016-03-30 17:25:03 -04:00
Vladimir Diaz
aaf755e381 Delete remove_delegated_roles() and modify affected lines (including add_role()) 
We shouldn't remove delegated roles if the repository can resemble a graph of delegations, since the delegations of one role are independent of another
 2016-03-30 16:43:51 -04:00
Vladimir Diaz
9536cacdee Fix bug where the snapshot and timestamp roles are listed in snapshot.json 2016-03-29 15:28:18 -04:00
Vladimir Diaz
283c62abe0 More unit test fixes 
A delegated rolename is no longer required to start with 'targets'
 2016-03-25 11:59:11 -04:00
Vladimir Diaz
b4626f172a Merge branch 'develop' of github.com:theupdateframework/tuf into remaining-1.0-tasks 2016-03-17 12:23:51 -04:00
Vladimir Diaz
dd8a7eb0dd Review test_indefinite_freeze_attack.py and updater.py. Minor edits made 2016-03-17 11:36:11 -04:00
Sebastien Awwad
167af8dd65
comment wording: refresh docstring explanation 2016-03-16 12:25:33 -04:00
Sebastien Awwad
93aec83fd5
fixing bug with logger.exception called outside of an except block 2016-03-14 17:43:22 -04:00
Sebastien Awwad
fee25a44cd
sharing bug with Vlad 2016-03-14 17:39:04 -04:00
Sebastien Awwad
8adab689ff
Expanding and clarifying docstring for tuf.client.updater::refresh() 2016-03-14 12:40:06 -04:00
Sebastien Awwad
66f56271d2 This is a manual squash commit of detect_expiry_322, to avoid merge conflicts. 
Comment lines from the individual commits include:
1. Fix #322 by detecting expiry of stale files. initial attempt
2. temp commit of files from Soma
3. removing freeze_attack_stale_expiry and leaving the test added to indefinite freeze attack
4. fixing indefinite freeze attack test: now incorporates old reject-freshly-downloaded-but-expired-timestamp test as well as reject-stale-already-present-but-expired-snapshot test
5. small refinements to indefinite freeze attack test
6. Pulled the recursion out of the except block in refresh() to avoid unprintable nested exceptions.
7. Added comments to the last commit (retry_once)
8. Merge pull request #1 from awwad/detect_expiry_322_temp (removing cruft in another branch)
 2016-03-10 15:01:12 -05:00
Vladimir Diaz
30f5d398f7 Mostly changes from PR #321 2016-03-01 13:24:17 -05:00
Vladimir Diaz
05d0acafd5 Remove extra whitespace 2016-02-29 11:03:12 -05:00
Vladimir Diaz
605d119195 Relocate the extraction of 'expected_versioninfo' earlier in the function as well 2016-02-26 16:50:30 -05:00
Vladimir Diaz
1193b79a75 Relocate the check for compressed metadata in _update_metadata_if_changed() 2016-02-26 16:45:37 -05:00
Vladimir Diaz
21910083bf Fix comment to say that _update_metadata_if_changed() returns early if metadata has not been updated. 2016-02-26 15:54:38 -05:00
Vladimir Diaz
ddd06f6205 Clean up if-else clauses in _update_metadata_if_changed() 2016-02-26 14:27:15 -05:00
Vladimir Diaz
a1c4e76a50 Add note to previous comments for os.makedirs() OSError exceptions. 2016-02-26 12:59:07 -05:00
Vladimir Diaz
14843acc28 Expand comments related to os.makedirs() exception handling in download_target() 2016-02-26 12:47:12 -05:00
Vladimir Diaz
c270a1ed5a Fix typo in _versioninfo_has_been_updated() docstring 2016-02-26 12:11:13 -05:00
Vladimir Diaz
dd9d31bef9 Add and fix comments in download_target() related to OSError exceptions 2016-02-22 16:03:49 -05:00
Vladimir Diaz
f52a9c8eff Fix minor wording issue in _update_versioninfo() 2016-02-22 14:57:23 -05:00
Vladimir Diaz
7548163912 Change function name and update comments 
_versioninfo_has_changed() --> _versioninfo_has_been_updated()
false --> False (typo)
Update comments to make it clear that metadata is considered updated when it's version number increases, rather than simply changed.
 2016-02-22 14:46:54 -05:00
Trishank Karthik Kuppusamy
da0a9aa196 By default, limit visited number of delegations in preorder DFS. 2016-02-19 17:44:21 -05:00
Trishank Karthik Kuppusamy
03fbe320e1 Skip visited roles in preorder DFS. 2016-02-19 17:27:17 -05:00
Vladimir Diaz
cbdb3fc722 Update README.md 
Tweak the `Overview of the Update Process` section (after discussion and tracing of behavior with Seb).
 2016-02-19 17:06:11 -05:00
Vladimir Diaz
24646526dc Update README.md 
Include note that the root file is re-fetched once to avoid an infinite loop.  (It loops only once in the reference implementation.)
 2016-02-19 14:28:42 -05:00
Vladimir Diaz
2f77fbccb6 Merge branch 'develop' of github.com:theupdateframework/tuf into tuf1.0_version_numbers 2016-01-27 17:07:06 -05:00
David Halls
4172479d39 Fix Python 3 errors 
- Signing data should be byte strings
- Don't log exception outside handler (#300)
 2016-01-04 22:00:13 +00:00
Vladimir Diaz
cba763239f Review updater.py 2015-10-28 13:58:14 -04:00