package conex-mirage-crypto

  1. Overview
  2. Docs
Establishing trust in community repositories: crypto provided via mirage-crypto

Install 

dune-project
 Dependency

github.com Readme Changelog BSD-2-Clause License Edit opam file Versions (2)

Authors

  1. H
    Hannes Mehnert <hannes@mehnert.org>

Maintainers

  1. H
    Hannes Mehnert <hannes@mehnert.org>

Sources

conex-1.0.0.tbz
sha256=8ba730718cbf0a381f0bce3493d18bfea1823bee0f43e4cbddad222b66dc164f
sha512=a76787c46b7c867e41daba10989841e95e7a2ba142dd09ae078649fd60340fcef703f41ddffc67b9c899fb4a2956906a0c8f9d04db7da435ac502b19851a490a

doc/CHANGES.html

v1.0.0 (2025-10-24)

  • Various bugfixes and quality of life improvements of the tooling
  • Various fixes to the conex diff provider (#47 #49)
  • Improve performance (allocate less, #43)
  • Use the now separate patch library (#41)
  • Avoid Format.str_formatter due to it being racy (#39 #40)
  • FEATURE: Support Ed25519 signatures (#35)
  • Speedup conex-verify-openssl by using sha instead of openssl dgst (#36)
  • Adapt to newer dependencies (remove rresult, mirage-crypto-rng 1.2.0, cmdliner 2.0.0 compatibility)
  • Add snapshot and timestamp support, and applications for these (#22, #26)
  • Require OCaml 4.08

v0.11.1 (2020-03-15)

  • Use mirage-crypto instead of nocrypto

v0.11.0 (2019-12-21)

  • Adapt to X509 0.7.0 API
  • Avoid deprecation warnings by using stdlib-shims
  • Adjust opam repository file locations #13, now the whitelist is: packages/NV/opam and packages/NV/files/* where NV is either name.version or name/name.version
  • Various fixes for diff in the real world #13

0.10.1 (2018-09-08)

  • re-add LICENSE.md file (with a 2 clause BSD license)

0.10.0 (2018-09-03)

  • adjusted to new conex design, lots of breaking changes
  • opam_encoding: maps use identifiers now, instead of strings - as does alg_type
  • conex_resource: use alg=data for encoding digests (instead of [ alg ; data ])
  • conex_resource: use hex encoding, rather than base64 for checksums
  • rename "package" to "releases" ; rename "release" to "checksums" (filenames)
  • conex_unix_private_key: store private keys in ~/.conex/.private, instead of having the repository included in the filename. this removes lots of magic from conex_author
  • conex_private: new module gathering private key handling and operations, replacing conex_unix_private_key and conex_crypto.SIGN

0.9.2 (2017-02-18)

  • conex_author: status subcommand: handle id argument properly

0.9.1 (2017-02-18)

  • conex_author:

    • key subcommand: argument 'all' queued invalid resources (using id = all)
    • init subcommand: sign at the end, to have a public key in the index
    • status subcommand: fix argument processing if both id and repo are present
    • verify subcommand: require repo, do not use id
  • crypto: trim result from pub_of_priv (nocrypto appends a newline, and breaks checksum)
  • conex: verify_janitors could never succeed (unless quorum = 0), because the team janitors (repo.teams) was empty while validating the team resource

0.9.0 (2017-02-16)

  • initial release