Skip to content

Milestone 1: minimal TUF #16

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
Sep 1, 2022
Merged

Milestone 1: minimal TUF #16

merged 7 commits into from
Sep 1, 2022

Conversation

@jku
Copy link
Owner

@jku jku commented Jun 21, 2022
edited
Loading

  • included is a client that has matching functionality vs baseline
  • repository metadata has been published
  • some (repository) design notes have been written

@jku
Copy link
Owner Author

jku commented Jun 22, 2022

A few possible changes still:

  • I'm considering making keyids readable names -- it's not strictly spec compliant but it would make this much easier to understand and talk about
  • Also considering removal of index.json files: The repository design allows just looking at targetpaths to gather all of this info, it's just that ngclient doesn't currently expose the list of targetpaths (RFE: expose delegated metadata to client application theupdateframework/python-tuf#1995) so this would have to access ngclient internals. The benefit would be a more straightforward implementation that is easier to understand

Both of these could be future enhancements waiting for library improvements as well

@jku jku changed the title Milestone: minimal TUF WIP: Milestone: minimal TUF Jun 22, 2022
@jku jku linked an issue Jun 23, 2022 that may be closed by this pull request
Implement "Milestone: Minimal TUF" #17
Closed
@MVrachev
Copy link

MVrachev commented Jun 26, 2022

Do you want us to make a high-level review on this @jku or do you want us to wait until you mark it as a non-draft pr?

@jku
Copy link
Owner Author

jku commented Jun 27, 2022

Either way works... I've been moving files around but I think it looks ok now.

I think I'll have a final look by tomorrow, and list some follow-up work and then mark if ready. But I don't mind getting comments now.

@jku
Copy link
Owner Author

jku commented Jun 29, 2022
edited
Loading

Also considering removal of index.json files

I will try this (by using some ngclient internal interfaces), and see how it works... I will keep this a draft until I see how that works and decide if I implement it in this PR or not

EDIT: this is not any less code but I think it's definitely the right path:

  • it removes one get_targetinfo() and one download_target() call from a normal artifact download, this is totally worth doing
  • repository no longer needs index.json to be kept in sync with the repository content

Jussi Kukkonen added 3 commits June 30, 2022 10:45
Add rough design doc and TUF client for milestone 1
934d153 
Added a design doc for "tuf-minimal" design, matching
https://github.com/jku/playground-tuf-minimal .
How design docs are stored should probably change (maybe a separate
directory for the repository designs matching the different milestones)
but currently everything is dumped in the same docs dir.

Added a client implementation into tuf/client/: it's 90% same as
baseline/client/. My current thinking is that we can leave baseline
as is and just update the tuf/ implementation as we progress through the
milestones.

Modified the baseline files to better match the current tuf design.

Signed-off-by: Jussi Kukkonen <jkukkonen@vmware.com>
Refactor: Separate milestone designs, rename dir
7124b94 
Separate milestone designs from other docs.

Rename the main source code directory: I imagine "playground/" is where
the current version of playground source will live, whether it is just
tuf or something more.

Signed-off-by: Jussi Kukkonen <jkukkonen@vmware.com>
docs/design-milestones: Improve TUF-MINIMAL language
582b5f7 
Signed-off-by: Jussi Kukkonen <jkukkonen@vmware.com>
design-milestones: Minimal TUF: Stop using index.json
dbc8171 
Remove index.json from the repository design: instead make the client
parse the targetpaths included in targets metadata. This is advantageous
because
* the repository is now simpler (no need to keep index.json and
  targetpaths in sync)
* client no longer needs to do an additional get_targetinfo() and
  download_target() to find the index file

The downside is that until
theupdateframework/python-tuf#1995 is fixed,
the client has to access ngclient internals.

Signed-off-by: Jussi Kukkonen <jkukkonen@vmware.com>
joshuagl
joshuagl reviewed Jun 30, 2022
View reviewed changes
@jku
Copy link
Owner Author

jku commented Jun 30, 2022

  • I modified the design so index.json is no longer there: this makes both the download process and the repository content simpler
  • I don't think there's anything critical missing from calling this milestone 1:
    • saving artifacts outside of git only makes sense when we have the upload functionality (otherwise it's too much manual work)
    • the way data is encoded in the targetpath could probably be improved... but if there's some really useful invention later, we can always come back to this milestone and improve it (in a branch if needed)
    • the fact that this uses python-tuf internals (to find all the targetpaths) is unfortunate but I think a good way to test the idea for RFE: expose delegated metadata to client application theupdateframework/python-tuf#1995: again, we can always fix this later if python-tuf gets the API (or if we decide that was a dumb idea)

I think this is ready. That said, I welcome opinions on high level decisions as well as the details.

@jku jku marked this pull request as ready for review June 30, 2022 14:06
@jku jku changed the title WIP: Milestone: minimal TUF Milestone 1: minimal TUF Jul 1, 2022
@jku
Copy link
Owner Author

jku commented Jul 1, 2022

It would probably be good if the main README documented the current state or milestone at a high level: so people who come to the project for the first time could see both what the state is and what the goal is...

docs: Replace "cloud" with better phrasing
c0fcf51 
Signed-off-by: Jussi Kukkonen <jkukkonen@vmware.com>
@jku
Copy link
Owner Author

jku commented Jul 4, 2022

Also, something we could already have at milestone 1: hashed bin delegations. This would give a notion of scalability to this setup.

However, I think I'll rather wait for

  • succinct delegations to arrive in a python-tuf release
  • a bit of repository helper code to arrive in tools (like repository-editor-for-tuf): I'd like a single command to add a file to a repository (so that it actually gets added to the correct targets file). This doesn't currently exist

@joshuagl
Copy link
Collaborator

joshuagl commented Jul 4, 2022

Given that we're specifically focused on modelling community content repositories, which tend to be large, including hashed bin delegation early is a good idea.

@lukpueh
Copy link
Collaborator

lukpueh commented Jul 6, 2022

This is great! I haven't looked at playground_client.py in detail yet, but I very much like the overall direction here. Two questions:

What is the plan for playground/client over the course of the roadmap? Now that it has an initial root and a client that supports a minimal TUF repository, I think it should be useable for any repo design of future milestones, bar some minor configuration such as remote BASE_URL, and local METADATA_DIR to avoid conflicts. Most changes of functionality in playground/client (e.g. adopt theupdateframework/python-tuf#1995) should be doable in a backwards-compatible way so that it works with all repo designs starting at 01-TUF-MINIMAL.md. I ask this because we briefly talked about a different branch for each milestone, or a single branch with different client directories. But if my assumption above is correct, we won't need that and will instead have a growing design-milestones/ dir and an evolving TUF-ROADMAP.md doc which always captures all accomplished milestones. Also, if this is correct, we could make the playground/client/README.md more generic. Of course we can make these decisions as we move along the ROADMAP. If, for instance, we need a custom network implementation for a future client, it could become messy.

The other question concerns the current set of private keys used to sign the metadata. IIUC, these are on your local machine, @jku? Should we share them among administrators on this repo so that they can update any metadata? At least the root key?

@lukpueh lukpueh mentioned this pull request Jul 19, 2022
Closed
3 tasks
lukpueh
lukpueh reviewed Jul 20, 2022
View reviewed changes
@jku
Copy link
Owner Author

jku commented Aug 9, 2022

  1. client roadmap

What is the plan for playground/client over the course of the roadmap? Now that it has an initial root and a client that supports a minimal TUF repository, I think it should be useable for any repo design of future milestones...

I fear devil is in the details though: e.g. the current target listing hack depends on knowing the specific targets metadata name. This will break the moment we have any delegations. Likewise I would not be surprised if some unseen requirement means we actually need index.json-like files in the future anyway. So changes are likely to happen even if the core client likely looks roughly the same. Still, no need to create branches until we realize something really should have been in milestone X but wasn't there.

  1. keys

Many ways to handle this -- you could just make a PR to the playground-tuf-minimal repository that adds your root key and developer key, and I could sign that change... I can give pointers on easiest ways to do this if this sounds good.

  1. succinct delegations

This now works in repository-editor-for-tuf (using unreleased python-tuf) so I want to add a succinct delegation here but I think not in this milestone: it requires solving the target listing issue mentioned above

jku added 2 commits September 1, 2022 09:36
@jku
client: Cleanup URL
579ea62 
Signed-off-by: Jussi Kukkonen <jku@goto.fi>
@jku
client: List runtime requirements
a0d5b5f 
Signed-off-by: Jussi Kukkonen <jku@goto.fi>
@jku
Copy link
Owner Author

jku commented Sep 1, 2022

I think I will merge this now: let's handle remaining complaints in new issues

@jku jku merged commit 476574a into main Sep 1, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lukpueh lukpueh lukpueh left review comments

@joshuagl joshuagl joshuagl left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Implement "Milestone: Minimal TUF"

5 participants

@jku @MVrachev @joshuagl @lukpueh