Update example metadata. Fix issue #436. #437
Conversation
|
The example metadata listed in the specification should be up-to-date as well (excluding Trident modifications). |
|
ping @awwad |
|
re the linked metadata example in the spec: there's a capitalized role name and it includes root's hash in snapshot. The former should be changed either here or in #472 (after #472 is rebased). When are we changing the latter? (Also, you made some of the ed25519 keys RSA keys. No particular reason, I assume?) |
|
I might make a few more changes to the format of metadata. Perhaps I
should rebase this once things have settled down. Another option is to
remove this example metadata and just have one place for it in METADATA.md.
I imagine that it will confuse people to have multiple examples.
…On Wed, Jul 12, 2017 at 3:59 PM, Sebastien Awwad ***@***.***> wrote:
re the linked metadata example in the spec: there's a capitalized role
name and it includes root's hash in snapshot. The former should be changed
either here or in #472
<#472> (after #472
<#472> is rebased). When
are we changing the latter?
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
<#437 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/ADW5c9sRAx-DYkATxCfwTi8pvMSIfgz_ks5sNSWYgaJpZM4NAeUz>
.
|
| "_type": "Snapshot", | ||
| "expires": "2030-01-01T00:00:00Z", | ||
| "_type": "Snapshot", | ||
| "expires": "2030-01-01T00:00:00Z", |
There was a problem hiding this comment.
Trailing whitespace here makes two lines that did not change look like they have changed. There's more like this above and below, too. Was this hand-edited or written out by repository_tool? (Are the signatures valid?)
There was a problem hiding this comment.
I have it set up where my editor removes trailing whitespace. This might be the cause of the issue.
There was a problem hiding this comment.
Oh, geez. I looked at it backwards and processed it as whitespace added, not removed. Well, the other question stands, I suppose: are the signatures valid?
|
Will number these.
Here are some more:
|
|
@awwad
My editor likely stripped the trailing whitespace. The signatures might not be affected because metadata is always canonicalized. However, the hashes might... |
|
There's sample or test metadata in several places:
You could combine 2 and 3. Uptane has sample metadata in a root-level samples/ directory and is shifting to using that data for testing purposes (instead of data kept in tests/test_data), but this may prove to be too much clutter in the samples/ directory... so I don't really have a good answer for you. Yes, I think that having example data in too many places is bad. I would lean toward combining 2 and 3, but I can't say that with a lot of conviction. |
|
Are you waiting for any further comments here? |
|
No, I'm not waiting for further comments. I'll likely work on this soon to combine 2 and 3. |
The metadata that is used by the unit and integration tests (available here) are the most up-to-date. This pull request moves the relevant metadata, key files, target files, etc. to the examples directory to address issue #436.
Please note that the Trident modifications have not yet been merged into the "develop" branch. An implementation of the map file is awaiting a review in PR #430, and support for multi-role delegations is available in Uptane, however, it is based on an old TAP/design that will need changing before being merged into TUF.
This pull request includes metadata that supports the specification and design goals of Mercury and Diplomat.