Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update to tuf 3.1 #109

Open
5 of 8 tasks
jku opened this issue Oct 17, 2023 · 0 comments
Open
5 of 8 tasks

Update to tuf 3.1 #109

jku opened this issue Oct 17, 2023 · 0 comments

Comments

@jku
Copy link
Member

jku commented Oct 17, 2023
edited
Loading

A superficial update is easy (in fact no changes are 100% required) but to avoid ugly changes in future, it might make sense to do this properly (I've got a branch with checked items done already):

  • Use verify_delegate() from Root, Targets instead of Metadata
  • Use signed_bytes property when the payload bytes are needed
  • Use get_verification_result instead of verify_delegate where-ever it's more ergonomic
  • Use get_verification_result instead of our own similar code in repositorys _get_signing_status()
  • Refactor open_prev(): We're really only interested in the previous version of Signed, not the Metadata...
  • refactor signer to use get_verification_result instead of own code

optional:

  • (maybe) Use get_verification_result in signer to explain who has signed already
  • (maybe) Refactor open() in general (this is more tuf API refactor than just tuf-on-ci internals)
@jku jku linked a pull request Oct 25, 2023 that will close this issue
Update tuf version #115
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update tuf version jku/tuf-on-ci
1 participant
@jku