| Age | Commit message (Collapse) | Author |
|---|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Pass 'no-use-tor' to avoid automagically using Tor if it's available
on the system (which gnupg does by default)!
This often causes connectivity issues and is a source of great confusion
for users.
See also d54fc1c3f35dca78a66dde10b857ab9ee54c68bc in getuto.
Signed-off-by: Sam James <sam@gentoo.org>
Closes: https://github.com/projg2/gemato/pull/34
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Support using GEMATO_DEBUG envvar to override the log level and force
DEBUG. This is mostly meant to handle calling gemato executable
via scripts where users can't trivially pass `--debug`. When gemato
is used via the Python API, the caller needs to configure the logger.
Something akin to the following is recommended:
logging.basicConfig()
if os.environ.get("GEMATO_DEBUG"):
logging.getLogger("gemato").setLevel(logging.DEBUG)
plus passing `debug=True` to `OpenPGPEnvironment` constructors.
CloseS: https://github.com/projg2/gemato/issues/7
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Update StrayCompressedManifestLayout test not to rely on specific gzip
output. It changes in Python 3.12, and it was a bad idea anyway.
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Support specifying connection timeout for key refresh operations. Set
the default to 3 minutes. This affects both WKD requests (via
requests, supports sub-second timeouts) and GPG requests (via dirmngr,
supports second precision).
Closes: https://github.com/projg2/gemato/issues/26
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
The old code path had a subtle behavior bug: if an expected key appeared
twice in data from a WKD URL, it was then removed entirely.
This happened at one point due to a GPG behavior: when using --export,
if --keyring is passed twice, with different keyrings, but those
keyrings both contain the key being exported (possibly with
different signatures), then the export output will have duplicates of
PGP packets present in both keyrings (e.g. UID).
To avoid this, defer the removal of unexpected keys until the main
import is completed.
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
Closes: https://github.com/projg2/gemato/pull/32
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: David Sardari <d@duxsco.de>
Closes: https://github.com/projg2/gemato/pull/31
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
emerge-webrsync needs this to suppress non-error/warning messages
when running in quiet mode to avoid noise in cronjobs.
Signed-off-by: Sam James <sam@gentoo.org>
Closes: https://github.com/projg2/gemato/pull/30
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Closes: https://github.com/projg2/gemato/pull/29
Signed-off-by: Sam James <sam@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Closes: https://github.com/projg2/gemato/issues/28
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
The signature timestamp is a property of the signature, not the key,
so it does not belong in keydata. Also, they are used only once,
so inline them both.
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
If the key is expired, reject it only if the signature was made after
the key expired. This only works in isolated environments where we
control key trust explicitly — as GnuPG will consider all expired keys
untrusted.
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Inline MANIFEST_GOOD_SIG and MANIFEST_BAD_SIG lists. They are both
being used in only one test, and they are combined there too. Add one
missing Manifest to the list.
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
|
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
