Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

test snapshot fast-forward attack recovery #1738

Merged
merged 2 commits into from
Jan 7, 2022
Merged

test snapshot fast-forward attack recovery #1738

merged 2 commits into from
Jan 7, 2022

Conversation

kairoaraujo
Copy link
Collaborator

This test simulates the snapshot fast-forward attack recovery.
It simulates that the snapshot keys were compromised, the attacker
generated a new high version of the snapshot.

The repository generates new keys for snapshot and timestamp and
rollbacks the snapshot version to the initial version.

Signed-off-by: Kairo de Araujo [email protected]

Part of #1713

  • The code follows the Code Style Guidelines
  • Tests have been added for the bug fix or new feature
  • Docs have been added for the bug fix or new feature

test snapshot fast-forward attack recovery
8a8fff3 
This test simulates the snapshot fast-forward attack recovery.
It simulates that the snapshot keys were compromised, the attacker
generated a new high version of the snapshot.

The repository generates new keys for snapshot and timestamp and
rollbacks the snapshot version to the initial version.

Signed-off-by: Kairo de Araujo <[email protected]>
@coveralls
Copy link

coveralls commented Dec 21, 2021
edited
Loading

Pull Request Test Coverage Report for Build 1607026953

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • 5 unchanged lines in 1 file lost coverage.
  • Overall coverage decreased (-0.0004%) to 97.702%
Files with Coverage Reduction New Missed Lines %
tuf/api/metadata.py 5 98.1%
Totals Coverage Status
Change from base Build 1605803389: -0.0004%
Covered Lines: 4095
Relevant Lines: 4175
💛 - Coveralls

jku
jku reviewed Dec 21, 2021
View reviewed changes
Copy link
Member

@jku jku left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yep, agreed on the implementation and listed requirements. Left some questions / comments

tests/test_updater_top_level_update.py Outdated Show resolved Hide resolved
tests/test_updater_top_level_update.py Outdated Show resolved Hide resolved
remove roles names as str, snapshot order
ac7a804 
This commit removes the role names as strings. Also do a slight
change for clarity.

Signed-off-by: Kairo de Araujo <[email protected]>
jku
jku approved these changes Dec 21, 2021
View reviewed changes
Copy link
Member

@jku jku left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great, thanks.

@jku jku merged commit b12a67c into theupdateframework:develop Jan 7, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jku jku jku approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@kairoaraujo @coveralls @jku