mihai.ibanescu@gmail.com
- Login: mihai.ibanescu@gmail.com
- Email: mihai.ibanescu@gmail.com
- Registered on: 08/26/2015
- Last connection: 03/05/2020
Issues
| open | closed | Total | |
|---|---|---|---|
| Assigned issues | 0 | 13 | 13 |
| Reported issues | 0 | 48 | 48 |
Projects
| Project | Roles | Registered on |
|---|---|---|
| Ansible Plugin | Contributor | 08/20/2018 |
| CertGuard | Contributor | 04/06/2020 |
| Container Support | Contributor | 12/06/2019 |
| Crane | Contributor | 01/06/2017 |
| Debian Support | Developer, Contributor | 01/06/2017 |
| Docker Support | Contributor | 01/06/2017 |
| File Support | Contributor | 07/17/2017 |
| Migration Plugin | Contributor | 01/14/2020 |
| Nectar | Contributor | 01/06/2017 |
| NPM Plugin | Contributor | 05/11/2020 |
| OSTree Support | Contributor | 01/06/2017 |
| Packaging | Contributor | 01/06/2017 |
| Pulp | Contributor | 01/06/2017 |
| Puppet Support | Contributor | 01/06/2017 |
| Python Support | Contributor | 01/06/2017 |
| RPM Support | Contributor | 01/06/2017 |
Activity
03/06/2020
-
Preventing publications from attempting to sign while the script is being deployed on disk and updated in the DB would be nice.
I like the idea of asking the user to deploy a new signing service (at a new path) instead of modifying th... Story #6291: SigningService should issue a warning if the signing script has changed on diskCurrently, signing services like AsciiArmoredDetachedSigningService which inherit from SigningService must verify that the signing script provided by the user produces valid signatures as expected by the signing service before the signin...
03/05/2020
-
Been there - ansible playbook failed to distribute the script on all the worker nodes. To me, this is an operational concern, not a security concern.
Letting the user know is good.
My concern with a warning is that it won't be not... Story #6291: SigningService should issue a warning if the signing script has changed on diskCurrently, signing services like AsciiArmoredDetachedSigningService which inherit from SigningService must verify that the signing script provided by the user produces valid signatures as expected by the signing service before the signin...
02/25/2020
-
Applied in changeset commit:pulp|5870b580e72035ef3310d4231ee7e049844e4f60. Issue #5573: Publish won't create multiple checkecksummed copies of primary.xml, fileliststs.xml etc even when in fast-forward modeI had noticed that, even though I was publishing a repository after copying a unit into it (i.e. no removal), I was still not getting multiple copies of primary.xml.gz.
Background: repositories with frequent publishes may cause yum cl...
02/24/2020
-
closes #5573
(cherry picked from commit d1cf726fa1ec99bb3aae1a8513bac5de3008b638) Revision 5870b580 (pulp): Preserve older copies of metadata files (primary.xml, etc)
01/20/2020
-
If a code change is required to enable other types of signatures / artifact changes, then I doubt it will ever happen.
It feels like a small change to the spec that will buy extensibility in the future.
I'd like for this proposal to ad... Task #5946: Add sign_file(filename) interface to SigningService modelA plugin author should be able to use an instance of a SigningService to produce a signed Artifact from an Artifact.
SigningService needs to provide a method called 'sign_file(filename)'. This method always returns a dictionary where ...
01/17/2020
-
I would try to not make any assumptions about the types of files returned by the signing server, if I can help it.
It's not like pulp users can create instances of a signing service remotely. They need to be set up by a pulp admin, who ... Task #5946: Add sign_file(filename) interface to SigningService modelA plugin author should be able to use an instance of a SigningService to produce a signed Artifact from an Artifact.
SigningService needs to provide a method called 'sign_file(filename)'. This method always returns a dictionary where ...
01/16/2020
-
There is a reason the interface implemented for metadata signing in pulp2 is modifying the file in place.
Sometimes, the plugin writer may not know what types of signatures (detached or not) are needed.
As an extreme (and maybe hypothe... Task #5946: Add sign_file(filename) interface to SigningService modelA plugin author should be able to use an instance of a SigningService to produce a signed Artifact from an Artifact.
SigningService needs to provide a method called 'sign_file(filename)'. This method always returns a dictionary where ... -
There is a reason the interface implemented for metadata signing in pulp2 is modifying the file in place.
Sometimes, the plugin writer may not know what types of signatures (detached or not) are needed.
As an extreme (and maybe hypothe... Story #5945: As an administrator I can provide a script that signs filesAs a pulp administrator, I can create a SigningService by providing a script that implements the following interface:
script-name \<file-name\>
The script can produce any number of files in the current working directory and then ou...
10/29/2019
-
-
Code to perform the actual conversion, along with minimal functional tests.· Closed issue
Also available in: Atom
.