Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

signer API: improve graceful failure testing and fix thus revealed error handling bug #556

Merged
merged 4 commits into from
Apr 12, 2023
Merged

signer API: improve graceful failure testing and fix thus revealed error handling bug #556

merged 4 commits into from
Apr 12, 2023

Conversation

lukpueh
Copy link
Member

@lukpueh lukpueh commented Mar 30, 2023

  • Improve tests on runner that don't have extra dependencies installed:

    • refactor test to add new cases more easily
    • test that verify_signature of SSlibKey and SigstoreKey fails gracefully, if optional dependencies are missing
    • test that ed25519 pure python fallback works for verification

  • Fix SSlibKey.verify_signature to re-raise UnsupportedLibraryError as VerificationError

@lukpueh
test: refactor gracefully verify failure test
1b2edf6 
Make test table driven to easily add other Key implementations.

Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
@lukpueh
test: add ed25519 pure python signing test
b42c815 
Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
@lukpueh
signer: fix SSlibKey error handling in verify
e6529cd 
Key.verify_signature implementations should only raise
UnverifiedSignatureError or VerificationError, even if an optional
dependency is missing.

This commit changes SSlibKey.verify_signature to re-raise
UnsupportedLibrarError as VerificationError.

Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
@lukpueh
test: check all Key.verify_sign fail gracefully
b1cf437 
Test SSlibKey and SigstoreKey in addition to already tested GPGKey.

Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
@lukpueh lukpueh requested review from jku and adityasaky and removed request for adityasaky March 31, 2023 07:38
@jku jku merged commit 5c7ef18 into secure-systems-lab:main Apr 12, 2023
@lukpueh lukpueh mentioned this pull request May 31, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jku jku jku approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@lukpueh @jku