Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

tuftool v0.12.0: Pull upstream updates #82

Merged
merged 43 commits into from
Mar 5, 2025
Merged

tuftool v0.12.0: Pull upstream updates #82

merged 43 commits into from
Mar 5, 2025

Conversation

fghanmi
Copy link

@fghanmi fghanmi commented Mar 5, 2025

No description provided.

jpculp and others added 30 commits July 16, 2024 17:13
@jpculp
Merge pull request awslabs#781 from jpculp/dep-bump
a1cc6cb 
Update rust dependencies (including AWS SDK)
@jpculp
Bump rust to 1.78.0 in actions runner
a313b9f 
Also addressed new clippy warnings.
@jpculp
Merge pull request awslabs#780 from jpculp/rust-bump
8fb4469 
Bump rust to 1.78.0 in actions runner
@jpculp
Bump cargo-deny in Makefile
864be9c
@jpculp
Bump rust to stable in actions runner
18791c1 
Also addressed new clippy warnings.
@jpculp
Update rust dependencies
b3f16c9 
Also updated `deny.toml`.
@flavio
fix: timestamp.json meta can has optional fields
f2a8cce 
According to the TUF specification, the `meta` attribute of
`timestamp.json` must follow the same specification of `METAFILES`.
That means it has optional `LENGTH` and `HASHES`.

See [this](https://theupdateframework.github.io/specification/latest/#file-formats-timestamp) section of
the TUF specification.

Fixes issue awslabs#771

Signed-off-by: Flavio Castelli <fcastelli@suse.com>
@jpculp
Merge pull request awslabs#778 from flavio/timestamp.json-optional-fi…
29289de 
…elds-inside-of-meta

fix: timestamp.json meta can has optional fields
@jpculp
Merge pull request awslabs#802 from jpculp/rust-1.80.0
446a460 
Replace pinned Rust 1.78.0 with stable
@mgsharm
Prepare for release
7cf66e9
@mgsharm
Merge pull request awslabs#817 from mgsharm/develop
ecab7eb 
Prepare for release
@aumetra
Fix 128bit integer serialization
3b46fea
@sumukhballal
dependency: update aws-sdk-kms to v1.41
a2f4e72
@sumukhballal
tuftool: switch to use rustls-tls-native-roots for reqwest
a329db4
@sumukhballal
Merge pull request awslabs#822 from sumukhballal/update-aws-dependencies
935a17b 
Updated aws-sdk-kms dependencies & use default tls for reqwest
@mgsharm
Prepare for release
81c2efe
@mgsharm
Merge pull request awslabs#823 from mgsharm/tuftool-release
1304bb7 
Prepare for release
@ginglis13
tough: migrate from ring to aws-lc-rs
32dc4c0 
Enable `prebuilt-nasm` feature for Windows.

Signed-off-by: Gavin Inglis <giinglis@amazon.com>
@ginglis13
tuftool: migrate to aws-lc-rs
fe4e849 
Enable `prebuilt-nasm` feature for Windows

Signed-off-by: Gavin Inglis <giinglis@amazon.com>
@ginglis13
tough-kms: migrate from ring to aws-lc-rs
126f485 
Signed-off-by: Gavin Inglis <giinglis@amazon.com>
@ginglis13
licenses: skip untrusted v0.7.1
f8f9b7e 
aws-lc-rs pins to untrusted v0.7.1; skip this crate in license checks

Signed-off-by: Gavin Inglis <giinglis@amazon.com>
@ginglis13
Merge pull request awslabs#825 from ginglis13/migrate-ring-aws-lc-rs
bbc3509 
Use `aws-lc-rs` in place of `ring`
@gthao313
tough-kms: upgrade to hyper-v1 using aws-smithy-experimental
112ea9f
@gthao313
tough-ssm: upgrade to hyper-v1 using aws-smithy-experimental
017d903
@gthao313
tuftool: update aws-config to use hyper v1
3f11fd8
@gthao313
Merge pull request awslabs#826 from gthao313/hyper_v1
aecc1a1 
Upgrade to hyper-v1 using aws-smithy-experimental
@ginglis13
feature: add a 'fips' feature to crates
af6a909 
add a 'fips' feature to tough crates to enable toggling fips enforcement
on crate dependencies. Remove the prebuilt-nasm feature in favor of
allowing downstream consumers to set this feature if needed; use
setup-nasm in CI for windows integ testing and split out integ
testing fips to a new Makefile rule such that it can be skipped in macos
testing

Signed-off-by: Gavin Inglis <giinglis@amazon.com>
@ginglis13
tuftool: install default CryptoProvider for HTTP client
f501c0f 
when building the tuftool HTTP client, install the aws_lc_rs default
CryptoProvider if none is set yet. This is to ensure that a
CryptoProvider for rustls is set before proceeded with HTTP methods.

Signed-off-by: Gavin Inglis <giinglis@amazon.com>
@ginglis13
deps: bump reqwest to 0.12, httptest to 0.16
680cc11 
Bump reqwest to 0.12 as a prerequisite for FIPS support.
@ginglis13
Merge pull request awslabs#828 from ginglis13/fips
5619bb1 
Add FIPS support
bcressey and others added 9 commits October 9, 2024 09:21
@bcressey
Merge pull request awslabs#820 from aumetra/aw/fix-i128-u128
4333b75 
Fix 128bit integer serialization
@mgsharm
Prepare for release
c5f5653
@mgsharm
Merge pull request awslabs#835 from mgsharm/develop
e8f453e 
Prepare for release
@mgsharm
Update cargo dependencies
dbde931 
Update deny.toml
@mgsharm
clippy fixes
90325a8
@mgsharm
Merge pull request awslabs#840 from mgsharm/dependency-update
b47a391 
Update cargo dependencies
@dependabot
build(deps): bump seanmiddleditch/gha-setup-ninja from 4 to 5
02e6daf 
Bumps [seanmiddleditch/gha-setup-ninja](https://github.com/seanmiddleditch/gha-setup-ninja) from 4 to 5.
- [Release notes](https://github.com/seanmiddleditch/gha-setup-ninja/releases)
- [Commits](seanmiddleditch/gha-setup-ninja@v4...v5)

---
updated-dependencies:
- dependency-name: seanmiddleditch/gha-setup-ninja
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@jpculp
Merge pull request awslabs#831 from awslabs/dependabot/github_actions…
4849410 
…/seanmiddleditch/gha-setup-ninja-5

build(deps): bump seanmiddleditch/gha-setup-ninja from 4 to 5
@fghanmi
Resolved merge conflicts
5f695a1
@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented Mar 5, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: fghanmi

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@fghanmi fghanmi changed the title Pull upstream update tuftool v0.12.0: Pull upstream updates Mar 5, 2025
@osmman osmman merged commit 0b0df27 into develop Mar 5, 2025
14 of 15 checks passed
@osmman osmman deleted the pull/upstream-update branch March 5, 2025 11:32
@fghanmi fghanmi mentioned this pull request Mar 5, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
10 participants
@fghanmi @osmman @jpculp @flavio @mgsharm @aumetra @sumukhballal @ginglis13 @gthao313 @bcressey