cchudant commented 2 years ago

Description

Remove trusted root certificate :x: This is because, as it turns out, this is useless! We are using let's encrypt certificates, so the trusted root is actually already in the systems certificates. I thought grpc python did couldn't use systems certs, so I hardcoded the full chain (which is very bad if the server burns or anything else) until I found a better way / did our own CA) when i first implemented cloud. This should be merged & a new version of blindai python client should be released in order for the cloud to switch infrastructure (to swarm).

Related Issue

None

Type of change

[ ] This change requires a documentation update
[x] This change affects the client
[ ] This change affects the server
[ ] This change affects the API
[ ] This change only concerns the documentation

How Has This Been Tested?

N/A

Checklist:

[x] My code follows the style guidelines of this project
[x] I have performed a self-review of my code
[x] I have commented my code, particularly in hard-to-understand areas
[x] My changes generate no new warnings
[x] I have updated the documentation according to my changes

github-actions[bot] commented 2 years ago

☂️ Python Cov

current status: ✅

Overall Coverage

Lines Covered Coverage Threshold Status

621 508 82% 0% 🟢

New Files

No new covered files...

Modified Files

File Coverage Status

client/blindai/client.py 79% 🟢

TOTAL 79% 🟢

updated for commit: 6aaf5a4 by action🐍

Lines	Covered	Coverage	Threshold	Status
621	508	82%	0%	🟢

File	Coverage	Status
client/blindai/client.py	79%	🟢
TOTAL	79%	🟢

JoFrost commented 2 years ago

Looks good. I'll test the changes ASAP

mithril-security / blindai

Cloud no root cert #125

Description

Related Issue

Type of change

How Has This Been Tested?

Checklist:

☂️ Python Cov

Overall Coverage

New Files

Modified Files