package conex-nocrypto

You can search for identifiers within the package.

in-package search v0.2.0

Establishing trust in community repositories: crypto provided via nocrypto

Install

sha256=9b64ab189a68ebb37daed618ce0c201f082469f4b4efa8cc9099442a169d924b

sha512=30caad9a0a8d45d24933652733349e251c0e8decb6ac4c7de18fc4ae8a621865f8af5b2d02a5c9fcca0cc122e6a443ba91f2f7a350f729633923f9c1b5cf913d

Adapt to X509 0.7.0 API
Avoid deprecation warnings by using stdlib-shims
Adjust opam repository file locations #13, now the whitelist is: packages/NV/opam and packages/NV/files/* where NV is either name.version or name/name.version
Various fixes for diff in the real world #13

adjusted to new conex design, lots of breaking changes
opam_encoding: maps use identifiers now, instead of strings - as does alg_type
conex_resource: use alg=data for encoding digests (instead of [ alg ; data ])
conex_resource: use hex encoding, rather than base64 for checksums
rename "package" to "releases" ; rename "release" to "checksums" (filenames)
conex_unix_private_key: store private keys in ~/.conex/.private, instead of having the repository included in the filename. this removes lots of magic from conex_author
conex_private: new module gathering private key handling and operations, replacing conex_unix_private_key and conex_crypto.SIGN

conex_author:
- key subcommand: argument 'all' queued invalid resources (using id = all)
- init subcommand: sign at the end, to have a public key in the index
- status subcommand: fix argument processing if both id and repo are present
- verify subcommand: require repo, do not use id
crypto: trim result from pub_of_priv (nocrypto appends a newline, and breaks checksum)
conex: verify_janitors could never succeed (unless quorum = 0), because the team janitors (repo.teams) was empty while validating the team resource