Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump notary version to 0.4.2 #27074

Merged
merged 2 commits into from
Oct 17, 2016
Merged

Bump notary version to 0.4.2 #27074

merged 2 commits into from
Oct 17, 2016

Conversation

cyli
Copy link
Contributor

@cyli cyli commented Sep 30, 2016
edited
Loading

This bumps the notary dependency up to 0.4.2 (full changelogs here).

The docker-client-relevant behavior changes are:

  • Will now compile under windows #970
  • Improved error messages for client authentication errors #972
  • Support for finding keys that are anywhere in the ~/.docker/trust/private directory, not just under ~/.docker/trust/private/root_keys or ``~/.docker/trust/private/tuf_keys` #981
  • Previously, on any error updating, the client would fall back on the cache. Now we only do so if there is a network error or if the server is unavailable or missing the TUF data. Invalid TUF data will cause the update to fail - for example if there was an invalid root rotation. #982
  • Improve root validation and yubikey debug logging #858 #891
  • Warn if certificates for root or delegations are near expiry #802
  • Warn if role metadata is near expiry #786
  • Fix passphrase retrieval attempt counting and terminal detection #906

cc @riyazdf @endophage

@cyli cyli changed the title Bump notary version to 0.4.1 Bump notary version to 0.4.2 Oct 1, 2016
@vieux
Copy link
Contributor

vieux commented Oct 5, 2016

ping @riyazdf @endophage

@vieux
Copy link
Contributor

vieux commented Oct 5, 2016

SGTM

@endophage
Copy link
Contributor

LGTM!

@cyli
Copy link
Contributor Author

cyli commented Oct 5, 2016

^sorry, fixed an error message typo in two of the tests

@justincormack
Copy link
Contributor

LGTM

1 similar comment
@riyazdf
Copy link
Contributor

riyazdf commented Oct 11, 2016

LGTM

@cyli
Copy link
Contributor Author

cyli commented Oct 13, 2016

bump. :) can this be merged?

@thaJeztah
Copy link
Member

Looks like some related commits could be squashed, or are we good with having them all separate?

@cyli
Copy link
Contributor Author

cyli commented Oct 15, 2016

@thaJeztah I have no strong feelings. I can squash them if you like.

@cyli
Bump vendored and dockerfile notary version to v0.4.2
5f4dcd8 
Signed-off-by: cyli <cyli@twistedmatrix.com>
@cyli
Fix API incompatibilities between notary v0.3.0 and v0.4.2:
0797af3 
- some function signatures have changed - use the new ones
- re-generate the notary delegation key certs, since notary doesn't allow SHA1
- fix some error message mapping because now if a root rotation fails to validate trusted operations will fail

Signed-off-by: cyli <cyli@twistedmatrix.com>
@thaJeztah
Copy link
Member

@cyli perhaps split in "bump" commits and "fix" commits

@thaJeztah
Copy link
Member

oh! done already, haha

thaJeztah
thaJeztah approved these changes Oct 15, 2016
View reviewed changes
Copy link
Member

@thaJeztah thaJeztah left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@vdemeester vdemeester merged commit a7c883f into moby:master Oct 17, 2016
@thaJeztah thaJeztah added this to the 1.13.0 milestone Oct 17, 2016
dnephin pushed a commit to dnephin/docker that referenced this pull request Apr 17, 2017
@vdemeester
Merge pull request moby#27074 from cyli/bump-notary-version
6566662 
Bump notary version to 0.4.2
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@thaJeztah thaJeztah thaJeztah approved these changes

Assignees
No one assigned
Labels
impact/changelog status/4-merge
Projects
None yet
Milestone
1.13.0
Development

Successfully merging this pull request may close these issues.
9 participants
@cyli @vieux @endophage @justincormack @riyazdf @thaJeztah @vdemeester @icecrime @GordonTheTurtle