lp-signing

~cjwatson/lp-signing:lpcraft

Last commit made on 2023-01-26

Get this branch:: git clone -b lpcraft https://git.launchpad.net/~cjwatson/lp-signing

Only Colin Watson can upload to this branch. If you are Colin Watson please log in for upload directions.

Branch merges

Branch information

Name:: lpcraft

Repository:: lp:~cjwatson/lp-signing

Recent commits

c60d867... by Colin Watson on 2022-07-27

Run tests via Launchpad CI jobs

This could be improved in a number of ways (e.g. using `tox`), but this
is enough to at least get us test runs on push.

	test:0 (build)

9cc65a0... by Colin Watson on 2022-11-04

Reduce key validity period to 25 years

Merged from https://code.launchpad.net/~cjwatson/lp-signing/+git/lp-signing/+merge/432573

6f6c61e... by Colin Watson on 2022-11-04

Reduce key validity period to 25 years

Apparently some firmware has trouble with certificates that have 30
years of validity, but is fine with 25 years.

LP: #1995455

644896f... by Colin Watson on 2022-02-28

Avoid logging key descriptions

Merged from https://code.launchpad.net/~cjwatson/lp-signing/+git/lp-signing/+merge/416150

da478d3... by Colin Watson on 2022-02-28

Avoid logging key descriptions

Key descriptions often include PPA key names, which include
personally-identifying information (display names of users). We don't
really need to log those here - we can correlate request timestamps and
(at least in successful cases) generated/injected fingerprints with
other logs if we need to figure out which PPAs we're
generating/injecting keys for - so it's good practice to avoid logging
this PII so that we can retain logs for longer periods with clear
consciences.

7fe6d06... by Colin Watson on 2022-02-24