Ignore unsigned files (only read and hash files contained in signature manifest) #501
Conversation
stefanberger
force-pushed
the
ignore-addition-files
branch
2 times, most recently
from
8d3c5e0 to
7577475
Compare
I thought that's what I was doing by only passing in the |
|
... I mean it's most efficient to only hash those files that are being asked for rather than hashing all of them first and filtering after. Is this what you would want me to do, filter-out unwanted files just before comparing the manifests? |
|
Let me open a 2nd PR for this. I think disk access is and hashing is too expensive to filter for later... |
|
We should probably benchmark this, based on real scenarios. We already have an The most reticence comes from having to add a new flag, which we might not need in the future. We'll need to think more here. |
stefanberger
force-pushed
the
ignore-addition-files
branch
from
7577475 to
5258ef0
Compare
In some cases it may be desirable to let the signature drive which files are being hashed rather than the filesystem contents. To use |
stefanberger
force-pushed
the
ignore-addition-files
branch
from
5258ef0 to
31b7caa
Compare
stefanberger
changed the title
stefanberger
force-pushed
the
ignore-addition-files
branch
from
31b7caa to
a8eaa4f
Compare
|
Will need to resolve conflicts, sorry for the delay that caused them |
stefanberger
force-pushed
the
ignore-addition-files
branch
from
a8eaa4f to
65c541a
Compare
Add support for command line option --ignore-unsigned-files that allows to ignore files that are not part of the signature (= not listed in the manifest). This allows to ignore files that for example were added after a signature was created and those files' presence would make the signature verification fail. Another use case for this is the presence of multiple signatures in the same directory where it is necessary to ignore the files that are not covered by each signature. Add support for this option for all verification methods. If this option is set, then create a list of files_to_hash that is derived from the list of files in the signature manifest. Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
Add test cases covering the cases of a symlink and an additional file created after a signature was created. Test expected failures and passes with and without the new option --ignore_unsigned_files. Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
stefanberger
force-pushed
the
ignore-addition-files
branch
from
65c541a to
40f27d3
Compare
|
Thanks for merging. |
|
Oh, this is awesome!! |
Summary
This PR adds support for an option --ignore_unsigned_files to ignore files that are not part of the signature manifest. This allows to for example ignore files that were added after a signature was created. Existing test cases are extended to cover additional symlinks and regular files added after signature created and tests for expected passes and failures depending on whether --ignore_unsigned_files is used.
Checklist