Skip to content
Snippets Groups Projects
  1. Feb 10, 2025
  2. Jan 28, 2025
    • Levente Polyak's avatar
      fix(tests): sequoia-sq 1.0 compat: avoid reusing file handles · 1dc5f514
      Levente Polyak authored
      
      Previously we opened a temporary file handle and have used this handle
      in multiple stages during creating a revocation certification, which has
      worked so far. Since latest sequoia, the passed file does not seem to be
      truncated but unlinked before being written to, which means our cached
      file handle is not valid anymore and subsequent truncation and write
      operations will point into the void instead of the inode currently used
      for the specific path. This lead to the actual certificate containing
      the revocation to never be written to the expected path, which means the
      keyring tooling has never picked up this packet.
      
      Stop relying on this behavior and instead just write to a handle once
      and create a new file for any further stages where we need to write
      a certificate to the filesystem.
      
      Signed-off-by: Levente Polyak's avatarLevente Polyak <anthraxx@archlinux.org>
      1dc5f514
    • David Runge's avatar
      fix: Adapt to sequoia-sq > 1.0 CLI API · 2cfc9d2e
      David Runge authored and Levente Polyak's avatar Levente Polyak committed
      
      Sq once more shuffled its interface around by removing the previously
      introduced toolbox subcommand again.
      We now add `--home none` and `--cert-store none` for all sq calls to
      ensure to hopefully not use a stateful interface.
      
      Signed-off-by: default avatarDavid Runge <dvzrv@archlinux.org>
      2cfc9d2e
  3. Jan 23, 2025
  4. Jan 22, 2025
  5. Dec 04, 2024
  6. Dec 03, 2024
  7. Nov 29, 2024
  8. Nov 11, 2024
  9. Nov 01, 2024
    • David Runge's avatar
      fix: Adapt use of sq to sequoia-sq 0.39.0 · 1b5d2bdd
      David Runge authored
      
      Add various fixes, as
      - the output format of `sq toolbox packet split` changed (again)
      - the CLI of `sq toolbox packet split` changed (again)
      - the useless warning message on stderr now covers two lines and
        interferes with parsing of `sq toolbox packet dump` output
      - the global option `--force` was renamed to `--overwrite`
      - the `sq key generate` subcommand introduced a mandatory `--rev-cert`
        option
      - the `pki certify` subcommand was moved to `pki vouch certify` and
        introduced mandatory options for our use-case (`--certifier-file`,
        `--cert-file`, `--userid`)
      
      Signed-off-by: default avatarDavid Runge <dvzrv@archlinux.org>
      1b5d2bdd
  10. Oct 23, 2024
  11. Oct 15, 2024
  12. Oct 12, 2024
  13. Oct 02, 2024
  14. Oct 01, 2024
  15. Sep 18, 2024
  16. Aug 23, 2024
  17. Aug 17, 2024
  18. Aug 14, 2024
  19. Aug 13, 2024
  20. Jul 17, 2024
  21. Jul 15, 2024
  22. Jul 09, 2024
Loading