Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

allow for unsigned cot artifacts when verify_cot_signature is False #168

Merged
merged 2 commits into from
Oct 20, 2017
Merged

allow for unsigned cot artifacts when verify_cot_signature is False #168

merged 2 commits into from
Oct 20, 2017

Conversation

escapewindow
Copy link
Contributor

This python-gnupg behavior seems to have changed, or my memory is
faulty. I remember gpg.decrypt returning an unsigned body when the
input was signed, and returning the original string when the input
wasn't signed. Now we're dying on verify_chain_of_trust: True,
verify_cot_signature: False, and an unsigned cot artifact.

Get around this by explicitly returning the original string if
verify_cot_signature is False, and if gpg.decrypt returns an empty
string.

@escapewindow
allow for unsigned cot artifacts when verify_cot_signature is False
ac80afe 
This python-gnupg behavior seems to have changed, or my memory is
faulty. I remember `gpg.decrypt` returning an unsigned body when the
input was signed, and returning the original string when the input
wasn't signed. Now we're dying on `verify_chain_of_trust: True`,
`verify_cot_signature: False`, and an unsigned cot artifact.

Get around this by explicitly returning the original string if
`verify_cot_signature` is `False`, and if `gpg.decrypt` returns an empty
string.
@escapewindow
Copy link
Contributor Author

@MihaiTabara had enough of reviews yet??? ;-D

@coveralls
Copy link

coveralls commented Oct 20, 2017
edited

Coverage Status

Coverage remained the same at 100.0% when pulling ac80afe on escapewindow:unsigned into 237df10 on mozilla-releng:master.

rail
rail approved these changes Oct 20, 2017
View reviewed changes
Copy link

@rail rail left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@coveralls
Copy link

coveralls commented Oct 20, 2017
edited

Coverage Status

Coverage remained the same at 100.0% when pulling e77dd2f on escapewindow:unsigned into 237df10 on mozilla-releng:master.

@escapewindow escapewindow merged commit 12cedaa into mozilla-releng:master Oct 20, 2017
@MihaiTabara
Copy link
Contributor

Sorry about not reviewing this today. I opened it in a tab in the morning and closed accidentally and forgot of it. I really wish Github had a "review queue" or something to warn me for pendings.

@escapewindow
Copy link
Contributor Author

No worries! You've reviewed a lot this week.

@escapewindow escapewindow deleted the unsigned branch June 12, 2018 21:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rail rail rail approved these changes

@MihaiTabara MihaiTabara Awaiting requested review from MihaiTabara

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@escapewindow @coveralls @MihaiTabara @rail