[Rpm-maint] [rpm-software-management/rpm] Handle revocation (PR #2027)

nwalfield notifications at github.com
Fri Apr 15 19:44:47 UTC 2022 

This cleans up https://github.com/rpm-software-management/rpm/pull/1993/commits/7e10e0d3572b79a210b14c6b00da8e68af7d8c0f as per the comments in the pull request.  I also:

  - Added my tests in place of @DemiMarie's, which used certificates that will expire in two years.
  - Added the missing break PR so that my test cases pass (https://github.com/rpm-software-management/rpm/pull/2026)
  - Dropped [6bf8f03](https://github.com/rpm-software-management/rpm/commit/6bf8f0350dedb8be5bcab94fdded73c00a37652d), as it is [a non-functional clean up](https://github.com/rpm-software-management/rpm/pull/1993#issuecomment-1100211400).
  - Dropped https://github.com/rpm-software-management/rpm/pull/1993/commits/4d19b426df1814c28591f3ffe206ead60ec8b0fa, as it [changes the semantics](https://github.com/rpm-software-management/rpm/pull/1993#issuecomment-1097830727).
  - Split https://github.com/rpm-software-management/rpm/pull/1993/commits/d6402e97fbba525f2ec0e7c02f8e112397666646 into two commits, as it represents two separate changes.
You can view, comment on, or merge this pull request online at:

  https://github.com/rpm-software-management/rpm/pull/2027

-- Commit Summary --

  * Add missing break
  * Only store packets that are followed by signatures
  * Improve pgpVerifySelf() API
  * Allow subkeys to be followed by a subkey revocation certificate
  * Restrict packets following a subkey
  * Ignore revoked subkeys
  * Test that signatures made by bad subkeys are rejected
  * Handle some critical subpackets

-- File Changes --

    M rpmio/rpmpgp_internal.c (166)
    M tests/Makefile.am (5)
    A tests/data/RPMS/hello-2.0-1.x86_64-signed-with-subkey.rpm (0)
    A tests/data/keys/alice-expired-subkey.asc (24)
    A tests/data/keys/alice-revoked-subkey.asc (74)
    A tests/data/keys/alice.asc (65)
    A tests/data/keys/alice.secret (107)
    M tests/rpmsigdig.at (193)

-- Patch Links --

https://github.com/rpm-software-management/rpm/pull/2027.patch
https://github.com/rpm-software-management/rpm/pull/2027.diff

-- 
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/pull/2027
You are receiving this because you are subscribed to this thread.

Message ID: <rpm-software-management/rpm/pull/2027 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20220415/01aded3c/attachment-0001.html>

More information about the Rpm-maint mailing list