https://git.schokokeks.org/derivepassphrase.git/tree/71f2f540c1f2e12948c0dd11b8eaef98233d396b 2025-12-27T17:01:22+01:00 tag:gitlist.org,2012:commit/71f2f540c1f2e12948c0dd11b8eaef98233d396b 2025-12-27T17:01:22+01:00 Marco Ricci software@the13thletter.info <pre>The function is now called `_load_key_optimistically`, and returns a success indication whether the key was (potentially already) loaded or not. Also, the private key blob cannot be `None` anymore, so the function no longer has degenerate cases. &lt;/pre&gt; tag:gitlist.org,2012:commit/40ecd7a6fd47f1103cd203d437b9ff9b8efd6556 2025-12-27T15:15:35+01:00 Marco Ricci software@the13thletter.info <pre>&lt;/pre&gt; tag:gitlist.org,2012:commit/4bfe78dfbae036695c68fbe80bb060c926a80d1c 2025-12-27T15:09:33+01:00 Marco Ricci software@the13thletter.info <pre>Extract the `_prepare_payload` and the `_load_keys_optimistically` helper functions from the `ssh_agent_client_with_test_keys_loaded` fixture function. The `_load_keys_optimistically` helper function needs further refactoring into a per-key function, not a per-keyset function; to be added in a following commit. &lt;/pre&gt; tag:gitlist.org,2012:commit/b0b10b66acf32597b853b36fd55a048dfde977ba 2025-12-27T14:57:17+01:00 Marco Ricci software@the13thletter.info <pre>The `ssh_agent_client_with_test_keys_loaded` fixture function is due to be split, moving the upload bits and the `prepare_payload` function to new top-level helper functions. Rename the `prepare_payload` function, and add parameter definitions so that the extracted functions will make immediate sense. &lt;/pre&gt; tag:gitlist.org,2012:commit/5bcd2c39308880309286a2243e3795833817d1a5 2025-12-27T14:43:35+01:00 Marco Ricci software@the13thletter.info <pre>The old implementation did not record *which* trailing data we were seeing, on the grounds that well-behaved SSH agents would not send any trailing data anyway (i.e., that this error condition was a failsafe). However, while implementing Windows named pipe support, I observed Pageant sporadically returning malformed responses that trigger this error. Without actually recording the trailing data, it is hard to understand whether this is Pageant's fault (unlikely) or ours (more likely), and specifically, whether we're implementing the protocol incorrectly (unlikely), or rather the communication channel (much more likely). So the `TrailingDataError` class now optionally records the actual raw response and the trailing data portion that caused the error, to aid debugging. &lt;/pre&gt; tag:gitlist.org,2012:commit/240ec594a6804125a8002e8b499531fca6aebc4f 2025-12-26T12:25:39+01:00 Marco Ricci software@the13thletter.info <pre>Use parametric types to allow better introspection into decorated classes. &lt;/pre&gt; tag:gitlist.org,2012:commit/efda816c5ef5ca7c40afb44dc5ebe88218063527 2025-12-25T23:37:49+01:00 Marco Ricci software@the13thletter.info <pre>The how-to "How to set up derivepassphrase vault with an SSH key" and the reference documentation "Prerequisites for using derivepassphrase vault with an SSH key" include new sections on Pageant and OpenSSH on Windows. For the latter, the "prerequisites" document also includes information on the deficiencies of the Windows port of OpenSSH, i.e., that the connection is aborted upon receiving unsupported requests (in violation of the communication protocol) and that the port lacks the features which normally distinguish OpenSSH from Pageant. We also expand the section on GnuPG's OpenSSH emulation on Windows in the "prerequisites" document: that the mode is untested because the documentation is wrong, and that we're now waiting for feedback from the GnuPG developers. &lt;/pre&gt; tag:gitlist.org,2012:commit/efe8135862681356dc11fc5b958f2973f744f4ef 2025-12-25T16:51:03+01:00 Marco Ricci software@the13thletter.info <pre>&lt;/pre&gt; tag:gitlist.org,2012:commit/a1151ec2842f0f06affb175e58ac39075faad3e8 2025-12-25T16:25:15+01:00 Marco Ricci software@the13thletter.info <pre>&lt;/pre&gt; tag:gitlist.org,2012:commit/0cbfb8e93248041854cdf6b94123fdca0499cc8c 2025-12-25T14:44:46+01:00 Marco Ricci software@the13thletter.info <pre>Add sanity checks for the constructed agent client with optimistically loaded test keys. The docstring asserts that the test fixture will skip if no keys can be loaded, but that wasn't the case. Furthermore, while there is little point in sanity testing the client when it is first received (from a different fixture, which does its own sanity checks), it makes sense to sanity-test the client *after* attempting to load all those test keys into the agent, because certain misbehaved agents terminate upon encountering unsupported key formats (see inline commentary), rendering the client non-functional. However, do not check whether the stubbed test agent can load the test keys. The stubbed test agent accesses the test keys directly, and only the test keys; whether the "load keys" operation succeeds or not is completely irrelevant. There is also little point in actually implementing the load operation: it is just more code that needs coverage, and dedicated tests. &lt;/pre&gt;