Commits · wiktor/migrate-to-rpgp · Arch Linux / signstar · GitLab

Snippets Groups Projects

Due to an influx of spam, we have had to temporarily disable account registrations. Please write an email to accountsupport@archlinux.org, with your desired username, if you want to get access. Sorry for the inconvenience.

View open merge request

Mar 07, 2025
- fix(deps): upgrade rpgp · 4ffc0e24
  Wiktor Kwapisiewicz authored 2 weeks ago
  
  Signed-off-by: Wiktor Kwapisiewicz <wiktor@metacode.biz>
  Verified
  
  4ffc0e24
Mar 05, 2025

chore(cargo): Move zeroize to workspace dependencies · 8aa10044
David Runge authored 1 month ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

8aa10044
chore(cargo): Move confy to workspace dependencies · 0024d4d3
David Runge authored 1 month ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

0024d4d3

feat: Add `HermeticParallelConfig::get_extended_mapping_for_user` · 70369439

David Runge authored 3 weeks ago


Enable returning a specific `ExtendedUserMapping` by searching for the
name of a system user in all mappings.

Signed-off-by: David Runge <dvzrv@archlinux.org>

70369439

feat: Add `ExtendedUserMapping` · b8639f36

David Runge authored 1 month ago


Add the wrapper type `ExtendedUserMapping` which is aware of the
administrative and non-administrative secret handling, as well as the
available backend connections while tracking a single `UserMapping`.
This establishes a user mapping centric view of a host.

Signed-off-by: David Runge <dvzrv@archlinux.org>

b8639f36

feat: Add HermeticParellelConfig::get_non_administrative_secret_handling · 9867882a
David Runge authored 3 weeks ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

9867882a
feat: Add `HermeticParallelConfig::get_administrative_secret_handling` · 38a64f0e
David Runge authored 3 weeks ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

38a64f0e

feat: Add `UserMapping::has_system_and_nethsm_user` · 12f48f08

David Runge authored 1 month ago


Add a function to easily evaluate whether a `UserMapping` has a system
user and at least one NetHSM user.

Signed-off-by: David Runge <dvzrv@archlinux.org>

12f48f08

feat: Derive useful `strum` macros for `AdministrativeSecretHandling` · 57aa0448

David Runge authored 1 month ago


Derive `strum::Display` and `strum::EnumString` for
`AdministrativeSecretHandling` as those are useful when e.g. using the
type in errors.

Signed-off-by: David Runge <dvzrv@archlinux.org>

57aa0448

chore(cargo-deny): Remove RUSTSEC-2025-0007 from ignore · 4129bf03

David Runge authored 3 weeks ago


The ring crate is now maintained by the maintainers of rustls.

Signed-off-by: David Runge <dvzrv@archlinux.org>

4129bf03

chore(lychee): Remove now available links from ignore · 6d8fb458
David Runge authored 2 months ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

6d8fb458

Mar 02, 2025
- chore(deps): update rust crate rstest to 0.25.0 · 44e2e7f0
  renovate authored 3 weeks ago
  
  Signed-off-by: renovate <renovate@archlinux.org>
  Verified
  
  44e2e7f0
Feb 26, 2025
- chore(deps): update rust crate uuid to v1.15.1 · 89be558a
  renovate authored 4 weeks ago
  
  Signed-off-by: renovate <renovate@archlinux.org>
  Verified
  
  89be558a
Feb 22, 2025

chore(deps): update rust crate uuid to v1.14.0 · 04403de8
renovate authored 1 month ago
```
Signed-off-by: renovate <renovate@archlinux.org>
```
Verified

04403de8

feat: Rely on `aws-lc-rs` as default crypto provider for `rustls` · f52204b7

David Runge authored 1 month ago

The `ring` feature for the `rustls` crate is no longer feasible now that
the upstream project is unmaintained.
Switch the direct use of `rustls` to rely on the default features, which
include the `aws-lc-rs` crypto provider (an AWS maintained fork of
OpenSSL).
Allow the OpenSSL license to be able to use the `aws-lc-rs` feature.

Fixes: #152


Signed-off-by: David Runge <dvzrv@archlinux.org>

f52204b7

chore(deny.toml): Ignore `RUSTSEC-2025-0007` (for now) · 0cd63db7
David Runge authored 1 month ago
```
Fixes: #151


Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

0cd63db7

Feb 21, 2025

chore: Switch to rustfmt style edition 2024 · 264045aa

David Runge authored 1 month ago


Ensure to always use style edition 2024.
Format all code according to style edition 2024.

Signed-off-by: David Runge <dvzrv@archlinux.org>

264045aa

feat: Switch to Rust edition 2024 · c7139613

David Runge authored 1 month ago


Use resolver 3 (which came with Rust edition 2024).
Set the minimum required Rust version to 1.85.0.

Signed-off-by: David Runge <dvzrv@archlinux.org>

c7139613

Feb 18, 2025
- fix: Adjust code to fix nightly clippy lint · 122414be
  Wiktor Kwapisiewicz authored 1 month ago
  
  Signed-off-by: Wiktor Kwapisiewicz <wiktor@metacode.biz>
  Verified
  
  122414be
- chore(deps): update rust crate uuid to v1.13.2 · 4149455d
  renovate authored 1 month ago
  
  Signed-off-by: renovate <renovate@archlinux.org>
  Verified
  
  4149455d
- fix(README): Use even more `rpacket` instead of `sq` for OpenPGP packet dumping · f59170a1
  Wiktor Kwapisiewicz authored 1 month ago
  
  Signed-off-by: Wiktor Kwapisiewicz <wiktor@metacode.biz>
  Verified
  
  f59170a1
Feb 11, 2025

fix(README): Use `rpacket` instead of `sq` for OpenPGP packet dumping · 850abd87

David Runge authored 1 month ago


As `sq` is in the habit of continuously changing its CLI, rely on the
simpler `rpacket` for dumping information on OpenPGP packets.

Signed-off-by: David Runge <dvzrv@archlinux.org>

850abd87

Feb 05, 2025

chore(deps): update rust crate openssl to 0.10.70 · 9e55d662

Christian Heusel authored 1 month ago


This fixes the pipeline failure from #144 as well as subsequent issues
and the underlying security issue.

Signed-off-by: Christian Heusel <christian@heusel.eu>

9e55d662

Jan 29, 2025
- fix(deps): update rust crate pgp to 0.15 · bc877715
  renovate authored 1 month ago
  
  Signed-off-by: renovate <renovate@archlinux.org>
  Verified
  
  bc877715
Jan 26, 2025
- chore(deps): update rust crate rustainers to 0.15 · 2a25e530
  renovate authored 2 months ago
  
  Signed-off-by: renovate <renovate@archlinux.org>
  Verified
  
  2a25e530
Jan 22, 2025

docs: Fix minor spelling issue in config.rs · 6587a7fa

Christian Heusel authored 2 months ago

It seems like the 2.4.0 version of codespell does deem the current
wording incorrect, therefore change it to the suggested "reuse"
spelling.

Fixes #143



Signed-off-by: Christian Heusel <christian@heusel.eu>

6587a7fa

Jan 14, 2025

fix(justfile): Run doc tests in the test recipe · f3105df4
David Runge authored 2 months ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

f3105df4
feat(justfile): Add recipe for running doc tests · a953ade1
David Runge authored 2 months ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

a953ade1
test: Add `non_admin_secret_handling` to example configuration · f4343daa
David Runge authored 2 months ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

f4343daa

feat: Set non-administrative secret handling in `ParallelHermeticConfig` · d606f8ba

David Runge authored 2 months ago


Add `NonAdministrativeSecretHandling` to `ParallelHermeticConfig` and
adjust all documentation to reflect this.

Signed-off-by: David Runge <dvzrv@archlinux.org>

d606f8ba

feat: Add `NonAdministrativeSecretHandling` · 94d79f64
David Runge authored 2 months ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

94d79f64
test: Add `admin_secret_handling` to example configuration · 0b167a48
David Runge authored 2 months ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

0b167a48

feat: Set administrative secret handling in `ParallelHermeticConfig` · 6bf7dcc7

David Runge authored 3 months ago

- Add `AdministrativeSecretHandling` to `ParallelHermeticConfig` and
  adjust all documentation to reflect this.
- Adjust `ParallelHermeticConfig::validate` to check for users for share
  upload and download only when using Shamir's Secret Sharing and fail
  if they are set otherwise.
- Move all use of configuration file strings in unit tests to separate
  fixture files, which allows better readability (also due to syntax
  highlighting).

Fixes: #123


Signed-off-by: David Runge <dvzrv@archlinux.org>

6bf7dcc7

feat: Add `AdministrativeSecretHandling` · b4694b80
David Runge authored 3 months ago
```
Signed-off-by: David Runge <dvzrv@archlinux.org>
```
Verified

b4694b80

fix(justfile): Ensure `install-pacman-dev-packages` recipe works · 910d0258

David Runge authored 2 months ago


Fix the wrong use of the `PACMAN_DEV_PACKAGES` environment
variable in the `install-pacman-dev-packages` recipe (it is called
`PACMAN_PACKAGES`).
Execute `pacman` using `run0` to ensure it can be run without `sudo` on
any newer systemd-based system.
Don't update the system but simply install the packages.

Signed-off-by: David Runge <dvzrv@archlinux.org>

910d0258

chore(deps): update rust crate uuid to v1.12.0 · 2abcabcb
renovate authored 2 months ago
```
Signed-off-by: renovate <renovate@archlinux.org>
```
Verified

2abcabcb

Jan 12, 2025
- chore(deps): update rust crate dirs to v6 · 897f6a20
  renovate authored 2 months ago
  
  Signed-off-by: renovate <renovate@archlinux.org>
  Verified
  
  897f6a20
Jan 09, 2025
- chore(deps): update rust crate tokio to v1.43.0 · 8293ea7a
  renovate authored 2 months ago
  
  Signed-off-by: renovate <renovate@archlinux.org>
  Verified
  
  8293ea7a
Jan 07, 2025
- chore(deps): update rust crate rstest to 0.24.0 · a1794f06
  renovate authored 2 months ago
  
  Signed-off-by: renovate <renovate@archlinux.org>
  Verified
  
  a1794f06
Dec 20, 2024
- ci: Use `cargo nextest` in integration tests · ad703ece
  Wiktor Kwapisiewicz authored 3 months ago
  
  Fixes: #109 Signed-off-by: Wiktor Kwapisiewicz <wiktor@metacode.biz>
  Verified
  
  ad703ece