Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature/2024 into Production #1

Merged
merged 238 commits into from
Oct 10, 2024
Merged

Feature/2024 into Production #1

merged 238 commits into from
Oct 10, 2024

Conversation

andrespavez
Copy link
Contributor

This version, named as dnssec-keytools-2024-20240920-20e5dd9, has been audited and is part of COEN 2.0.0

jschlyter and others added 30 commits April 9, 2024 21:14
@jschlyter
wip
e974ea8
@jschlyter
wip
206a6aa
@jschlyter
use RSAPublicNumbers.public_key()
0185d6d
@fredrikt
add vscode devcontainer setup
2b0caeb
@fredrikt
capitalize expected error message from newer python
64474be
@fredrikt
upgrade syntax to python 3.12
96661c5 
Command:

  find src/ -type f | xargs pyupgrade --py312-plus --keep-runtime-typing
@fredrikt
remove leftover imports
c0029b5
@jschlyter
remove venv
0628014
@jschlyter
add /opt/homebrew/lib/softhsm/libsofthsm2.so
66cbe4a
@jschlyter
replace black/isort with ruff
18daed4
@jschlyter
Merge pull request #1 from kirei/ft-pyupgrade
c6c6421 
syntax upgrade
@jschlyter
reformat with black/isort
398fc5f
@jschlyter
add github actions
b01933a
@jschlyter
more
fe6125e
@jschlyter
start pytest as module
ffdd5c4
@jschlyter
install python dependencies
c04700b
@jschlyter
lint
30a3397
@jschlyter
replace pylama with ruff
257f3f9
@jschlyter
Merge branch 'poetry' into ruff
f22bdb4
@jschlyter
reformat and fix syntax
54c2cf3
@jschlyter
clean
58c1a0b
@jschlyter
init
63ef092
@jschlyter
build with poetry
a4a4030
@fredrikt
Merge pull request #3 from kirei/ruff
4d26ae4 
Ruff
@fredrikt
Merge pull request #2 from kirei/github_actions
6f48a8c 
Add GitHub actions
@jschlyter
use version number from pkg resources
a6c14b6
@jschlyter
init
8ac1c03
@jschlyter
remove duplicate dependency
89ecb25
@jschlyter
use importlib.metadata for version
7d6b8e1
@fredrikt
be explicit about returning None as required by newer mypy
34d3b56
fredrikt and others added 28 commits June 11, 2024 13:34
@fredrikt
test_inventory: fix test, testing both with and without DNS records
b8613e0
@jschlyter
drop isort, reformat and bump dependencies
e5393e4
@jschlyter
Merge pull request #74 from iana-internal/feature/print_public_key_2
37ef807 
Print public key
@jschlyter
upgrade
ae92109
@jschlyter
upgrade dependencies
b73b208
@jschlyter
update Develop setup docs
85d2300
@jschlyter
add container example
f972912
@fredrikt
bugfix: Signatures over revocations should not be checked in KSR-POLI…
d595c1b 
…CY-SAFETY

Updates #75.
@fredrikt
rephrase
1ac3bef
@jschlyter
Merge pull request #76 from iana-internal/bugfix/retire_safety_of_rev…
0e9b06c 
…oked_keys

bugfix: Signatures over revocations should not be checked as per KSR-POLICY-SAFETY.
@fredrikt
refactor the compilation of keys to sign into a dedicated class
07a44f3
@fredrikt
bugfix: use the right key tag in signatures over revoked keys
c4f30e1 
Closes #77.
@jschlyter
upgrade
84d38a4
@andrespavez
Merge pull request #78 from iana-internal/bugfix/wrong_key_tag_on_rev…
e1b09f8 
…oked_keys

bugfix wrong key tag on revoked keys
@fredrikt
refactor UpdatedKeys -> KeysToSign
0b17fc3
@fredrikt
Key: add method as_revoked()
ce16fd5
@fredrikt
Update test to validate more about the keys and signatures.
ac53aad 
Specifically, ensure that the signature refers to the revoked instance
of EC2, rather than the non-revoked. Validates the change in commit
c4f30e1.
@fredrikt
remove unused imports
14d3965
@fredrikt
minor tweaks
d1ea941
@fredrikt
make a KSKM_P11Key.sign() function
c0e39a3 
This makes signing less coupled to PKCS#11, allowing tests signing
things in software.
@fredrikt
Add theoretical implementation of EdDSA (Ed25519 and Ed448).
88f91bc 
NOTE: There is currently NO PKCS#11 support for generating a key or
using a private key stored in an HSM.
@fredrikt
make typecheck clean again
b10dda2
@jschlyter
Merge pull request #82 from iana-internal/feature/typecheck_clean
e20af70 
Fix type complaints.
@jschlyter
Merge pull request #80 from iana-internal/bugfix/wrong_key_tag_on_rev…
8017697 
…oked_keys

Bugfix/wrong key tag on revoked keys
@fredrikt
rename EdwardsCurvePublicKey -> EdCurvePublicKey
5fb736a
@jschlyter
Merge pull request #81 from iana-internal/feature/eddsa
20e5dd9 
Support for EdDSA.
@andrespavez
Added audit report for version dnssec-keytools-2024-20240920-20e5dd9
ecfd6dc
@andrespavez
Updated taxonomy for keytool packages
9f6911e
@andrespavez andrespavez merged commit 9e3a26c into master Oct 10, 2024
6 checks passed
@andrespavez andrespavez deleted the feature/2024 branch October 10, 2024 19:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@andrespavez @jschlyter @fredrikt