summaryrefslogtreecommitdiff
path: root/src/leap/keymanager/tests
AgeCommit message (Collapse)Author
2016-02-25[feat] move validation, usage and audited date to the active documentRuben Pollan
- Resolves: #7485
2016-02-23[feat] defer decrypt, gen_key and encryptVictor Shyba
This commit put those gnupg operations to be run on external threads limited by the amount of cores present on user machine. Some gnupg calls spawn processes and communicating to them is a synchronous operation, so running outside of a reactor should improve response time by avoiding reactor locking.
2016-02-09[style] fix pep8Ruben Pollan
2016-01-29[feat] use HTTPClient instead of requestsVictor Shyba
This commit adapts code to use HTTPClient instead of requests. requests library receives a certificate as parameter during requests while HTTPClient recelives a cert only on constructor. In order to have both types (leap cert and commercial certs) working together we introduced two clients on constructor.
2016-01-27[refactor] isolate requestsVictor Shyba
Isolate requests lib related code and update docstrings.
2015-10-01[feat] self-repair the keyring if keys get duplicatedRuben Pollan
In some cases in the past keys got stored twice in different documents. Hopefully this issue is solved now, this tries to self-repair the keyring if encounters that. This is not really solving the problem, if it keeps happening we need to investigate the source. - Resolves: #7498
2015-09-24[style] more pep8 fixesKali Kaneko
2015-09-24[style] fix pep8 warningsFolker Bernitt
2015-09-24[bug] keep combined file longer in scopeFolker Bernitt
In previous commit 9546348c, the combined bundle ca was not long enough in scope and was therefore deleted when it actually was used. Adopted test to check whether file is deleted.
2015-09-24[tests] Add regression tests for sign_usedFolker Bernitt
Fails if wrong address is passed to the put_key method, or wrong key is marked as sign_used. - Related: #7420
2015-09-24[bug] don't repush a public key with different addressRuben Pollan
During decryption the signing public key was getting repush with a different address as part of the verify usage flagging. - Resolves: https://github.com/pixelated/pixelated-user-agent/issues/466 - Related: #7420
2015-09-24[bug] treat empty string ca_cert_path as NoneFolker Bernitt
Fixup for 9546348c36. This problem only occurs in test setups where '' is passed to ca_cert_path.
2015-09-21[style] fix pep8 problemsRuben Pollan
2015-09-18[feature] Use ca_bundle when fetching keys by urlFolker Bernitt
This is necessary as a fetch by url will talk to remote sites or, for providers with a commercial cert, with a cert that had not been signed with the provider CA. - support lookup of local keys by url for providers with a commercial cert - combine ca_bundle with ca_cert_path if specified - close soledad after each test
2015-08-03[style] Fixed pep8 warningsBruno Wagner
Fixed pep8 warnings to prepare the keymanager for CI
2015-07-29[style] pep8Kali Kaneko
2015-06-27[bug] remove the dependency on enum34Ruben Pollan
* Resolves: #7188
2015-03-30[feat] set fetched keys as Weak Chain if they are not from the same domainRuben Pollan
Nicknym server is authoritative for its own domain, but for others it might retrieve keys from key servers. On keys from the same domain we set the validation level to 'Provider Trust'. For other domains in the email address we set it to 'Weak Chain' as we don't have info about its source. Resolves: #6815 Related: #6718 Releases: 0.4.0
2015-01-15Port validation levels to enum34Ruben Pollan
2015-01-15upgrade key when signed by old keyRuben Pollan
2015-01-15Upgrade keys if not successfully used and strict high validation levelRuben Pollan
2015-01-15Return a valid error from gatherResultsRuben Pollan
2014-12-16Return the right error on signature verificationRuben Pollan
2014-12-16Find the gpg path instead of hard code itRuben Pollan
2014-12-16Fix key generationRuben Pollan
2014-12-16Port to soledad new async APIRuben Pollan
2014-11-25Return signing key on signature verificationRuben Pollan
Don't throw an exception if verification fails
2014-11-25Use addresses instead of keys on the public APIRuben Pollan
2014-11-25Fix test to use correct new signature for openpgp.put_ascii_key().drebs
2014-11-19Implement multi uid supportRuben Pollan
2014-11-10Implement the new encryption-key soledad documentRuben Pollan
2014-11-06Use datetime for key expirationRuben Pollan
2014-11-04Merge keys when updating an exisiting keyRuben Pollan
This is needed to prevent roll back attacks where the attacker push us to accept a key with an old expiration date that could be use to push an untrusted key when after it's expiration.
2014-10-23Basic validation levels supportRuben Pollan
2014-10-09Implement 'fetch_key' for ascii keysRuben Pollan
binary keys support is still missing
2014-10-09Accept ascii keys on put_keyRuben Pollan
2014-09-16Rename method get_all_keys_in_local_db -> get_all_keysRuben Pollan
2014-09-16Remove get_key_from_cacheRuben Pollan
We only need to cache the fetch with a sort timeout. The tests that fetches keys now have to use different keys or will be cached.
2014-09-16Remove refresh_keysRuben Pollan
Never should be done a bulk upload of keys. The updating of the keys should not be a task for the user of the keymanager. Keys will be updated by the keymanager in a background worker one per one.
2014-07-25Fix test_send_keyRuben Pollan
2014-01-17Fix failing tests.Ivan Alejandro
Add missing MockSharedDB. Update Soledad parameters.
2013-11-04Add verification of detached signatures.drebs
2013-10-02Update to use gnupg 1.2.2 module.drebs
2013-08-19Update to new soledad package scheme.drebs
2013-08-08Support bundled GPG and change API.drebs
- Move openpgp encrypt/decrypt/sign/verify API to inside OpenPGP class. - Add encrypt/decrypt/sign/verify API to KeyManager. - Add possibility of passing custom gpg binary to KeyManager and OpenPGPScheme. - Remove "_asym" suffix from method names. - Bump version to 0.2.1. New API is *not* backwards compatible.
2013-07-02Move the key manager from leap_client repo to its own repo.drebs