-
Notifications
You must be signed in to change notification settings - Fork 81
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[WIP] Draft v3 root changes #139
Conversation
Signed-off-by: Asra Ali <asraa@google.com>
|
Signed-off-by: Asra Ali <asraa@google.com>
Custom metadata added as:
|
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
What's left here? Need any help? |
Hey! So far key rotation worked and I got blocked on delegation "refreshing" theupdateframework/go-tuf#239 It could be a simple fix that I can work around in the wrapping TUF API code. I'll be able to try that today and do another dry run. Would love help for a very quick dry run later this week! @priyawadhwa since you likely have a key too. |
Yup, I definitely had one! Will try to find it 😅 |
Let us know how you need help here. @ethan-lowman-dd |
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
Signed-off-by: Asra Ali <asraa@google.com>
# Add the key! | ||
./tuf add-key -repository $REPO | ||
|
||
# Ask user to remove key (and replace with SSH security key) | ||
read -n1 -r -s -p "Remove your Yubikey, then press any key to continue..." |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@haydentherapper are you sure you didn't see this prompt?
https://github.com/asraa/test-sigstore-root/issues/80#issuecomment-1086201454
maybe it's possible tapping the yubikey had pressed a key? Maybe I'll make it an explicit type Y?
Signed-off-by: Asra Ali asraa@google.com
Summary
Ticket Link
Fixes
Release Note