docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,854 Commits 21 Branches 28 Tags 816 MiB
Commit Graph

18 Commits

Author SHA1 Message Date
Ying Li cea46f7c3e Change root cert rotation to be root key rotation instead 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-04-13 22:12:53 -07:00
Ying Li 708507adde Require signing with all previous roles, instead of just the immediately previous role 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-04-13 22:10:58 -07:00
Ying Li 79238e087f Change assert to require in tuf/* packages 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-04-05 11:21:14 -07:00
David Lawrence bfee37d471 update top level Signed.Signed to be a *json.RawMessage 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-03-18 16:18:53 -07:00
Riyaz Faizullabhoy 9ecd899e25 Removing key import and gun from cryptoservice 
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
 2016-03-18 11:31:03 -07:00
Miloslav Trmač 4898d252ee Don't silently ignore swizzler errors 
These calls can fail, and errors would cause false failures later in the
tests.

Signed-off-by: Miloslav Trmač <mitr@redhat.com>
 2016-03-16 18:33:48 +01:00
Ying Li 1bfafa0b77 Add test to check that if a key is rotated, but the requisite piece of 
metadata hasn't been resigned, that an update fails because the
cached version is no longer valid.

Signed-off-by: Ying Li <ying.li@docker.com>
 2016-03-03 09:22:26 -08:00
Ying Li f0ddda1602 Add methods for mutating per-metadata data to swizzler 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-02-17 19:35:03 -08:00
David Lawrence 1db128778d completely removing KeyDB 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-02-16 21:11:13 -08:00
Riyaz Faizullabhoy b46391ee8f Remove RoleWithKeys 
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
 2016-02-16 10:07:00 -08:00
Ying Li c88461d485 Change the client to pass the RoleWithKeys to signed.Verify instead of a KeyDB. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-02-10 15:21:05 -08:00
Ying Li 237561a2a9 Fixed timestamp downloading so if verification fails, we fall back to cached. 
Signed-off-by: Ying Li <ying.li@docker.com>

Conflicts:
	tuf/client/client.go
 2016-01-29 11:05:21 -08:00
Ying Li bb5f9cc170 Update swizzler so that if messing up the root file, we can still get the pub keys and sign. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-01-29 11:01:31 -08:00
Ying Li a969db7a13 Add swizzler method to just change the checksum by adding a space. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-01-29 11:01:31 -08:00
Riyaz Faizullabhoy 41643d4a9c make -1 read up to 100MB of data, use for non-timestamps. Reduce 
timestamp to 1MB max

Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
 2016-01-28 10:17:17 -08:00
Riyaz Faizullabhoy a6159a45d1 ensure filestore GetMeta only returns up to size bytes. Standardize constant for max size 
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
 2016-01-28 10:16:19 -08:00
Ying Li df53f51b0b Refactor swizzler to not produce a repo itself, but to just take some initial metadata. 
Updated the testutils/repo.go utility to be able to produce a repository with delegations
and to export metadata from said repo instead.

Signed-off-by: Ying Li <ying.li@docker.com>
 2016-01-20 10:02:14 -08:00
Ying Li 4838a90640 Refactor metadata changers into a helper fuzzer object in testutils package. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-01-19 16:27:01 -08:00