-
Notifications
You must be signed in to change notification settings - Fork 270
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
test targets fast-forward attack recovery #1742
test targets fast-forward attack recovery #1742
Conversation
Two comments here.
|
Pull Request Test Coverage Report for Build 1654002083
💛 - Coveralls |
Test logic looks 100% correct to me. I would personally remove two things from the test to keep it as minimal as possible:
Basically I'm not opposed to adding tests with more steps and complications in them... but I would like the test suite to first contain the most condensed test cases, and only add more complicated ones if needed after that. Opinions on that? |
IMHO, we should keep the targets key rotation. |
Yes this is true ... however
I can merge it like this but personally I'd prefer the smallest possible tests for these cases and then new tests (in other issues) for more complex scenarios if it looks like they are needed. |
This test simulates the targets fast-forward attack recovery. It simulates that the targets keys were compromised, the attacker generated a new high version of the targets. The repository generates new key for snapshot to rollback the targets version to the initial version. Signed-off-by: Kairo de Araujo <kdearaujo@vmware.com>
506902d
to
5b4a47a
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thank you. These are great tests that will make it much easier to write a spec issue about making the key rotation requirements clearer
This test simulates the targets fast-forward attack recovery.
It simulates that the targets keys were compromised, the attacker
generated a new high version of the targets.
The repository generates new keys for targets and snapshot to
rollback the targets version to the initial version.
Signed-off-by: Kairo de Araujo kdearaujo@vmware.com
Please fill in the fields below to submit a pull request. The more information
that is provided, the better.
Part of #1713