Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PEP 458: fix technical choices and remove ambiguity #1203

Merged
merged 172 commits into from
Dec 2, 2019
Merged

PEP 458: fix technical choices and remove ambiguity #1203

merged 172 commits into from
Dec 2, 2019

Conversation

trishankatdatadog
Copy link
Contributor

Update PEP 458 as per @ewdurbin and @dstufft comments. High-level summary:

  • Discuss online and offline key management
  • Discuss root key distribution and rotation
  • Fix cryptographic signing algorithm (Ed25519)
  • Update metadata scalability
  • Ensure metadata works with CDNs
  • Discuss how metadata is updated as a transaction for every new snapshot
  • Mention backwards-compatibility
  • Other clarifications

JustinCappos and others added 30 commits October 3, 2019 16:09
@JustinCappos
Fixing link to [81]
8c9c212
@mnm678
clarified that filenames can be relative or absolute
2fa11b3
@JustinCappos
Addressing the frequency of updates issue...
d656e3c
@trishankatdatadog
talk about managing online keys
4296723
@JustinCappos @lukpueh
Fixing link to [81]
fb87018
@JustinCappos @lukpueh
Addressing the frequency of updates issue...
e6ea13f
@JustinCappos @lukpueh
First cut at revoking trust text
7426e7b
@JustinCappos @lukpueh
more update related changes.
57abcb1
@JustinCappos @lukpueh
Garbage collection initial text. Needs more work.
2be8b84
@trishankatdatadog @lukpueh
Update pep-0458.txt
7d1c235 
Co-Authored-By: lukpueh <luk.puehringer@gmail.com>
@trishankatdatadog @lukpueh
Update pep-0458.txt
3f3e8c3 
Co-Authored-By: lukpueh <luk.puehringer@gmail.com>
@trishankatdatadog
discuss offline key ceremony
ddbf2aa
@trishankatdatadog
Merge remote-tracking branch 'upstream/master'
6fa6ab5
@trishankatdatadog
update metadata scalability
9da22de
@mnm678
changed minilock example to yubikey
4c3503a
@lukpueh
Merge pull request #2 from mnm678/yubikey
f9ba905 
Add Yubikey example and link
@lukpueh
Update section about consistent snapshots
5d2cadd 
consistent snapshots used to require a hash digest prefix in
filenames for metadata and target files, now only target
files add a hash digest prefix and metadata uses a version number.
@lukpueh
Update link to client updater workflow
4e684a9 
The link used to point to outdated documentation in the reference
implementation. This change updates the link to point to the
up-to-date client workflow in the specification.
@lukpueh
Merge pull request #7 from lukpueh/update-client-workflow-ref
7ca5b03 
Update link to client updater workflow
@lukpueh
Merge pull request #6 from lukpueh/consistent-snapshot
5279755 
Update Consistent Snapshots section
@JustinCappos
Merge pull request #5 from trishankatdatadog/trishankatdatadog/metada…
7975c2f 
…ta-scalability

Update metadata scalability
@JustinCappos
Merge pull request #3 from mnm678/relative_files
39c73df 
Relative or absolute filenames
@trishankatdatadog
clarify
0980fc4
@JustinCappos
Merge pull request #4 from trishankatdatadog/trishankatdatadog/online…
2bf2c95 
…-keys

Discuss how to manage online and offline keys
@mnm678 @lukpueh
updated image
0858bce
@mnm678 @lukpueh
updated description to explain that bins uses an offline key
00aab96
@mnm678 @lukpueh
bins role should be offline, bin-n roles online
b46c4c4
@mnm678 @trishankatdatadog @lukpueh
Update pep-0458.txt
f06d908 
Co-Authored-By: Trishank K Kuppusamy <33133073+trishankatdatadog@users.noreply.github.com>
@mnm678 @trishankatdatadog @lukpueh
Apply suggestions from code review
dfb86e6 
Co-Authored-By: Trishank K Kuppusamy <33133073+trishankatdatadog@users.noreply.github.com>
@mnm678 @lukpueh
refer to bins roles as bin-n
8e30797
@mnm678 mnm678 mentioned this pull request Nov 14, 2019
Closed
mnm678 and others added 18 commits November 20, 2019 10:21
@mnm678
remove sha256 and redo metadata overhead calculations
12b8a5e
@mnm678
add description of version number scalability
9b3fd4a
@mnm678 @joshuagl
Update pep-0458.txt
534f946 
Co-Authored-By: Joshua Lock <jlock@vmware.com>
@mnm678
fix typos
d0deb7a
@mnm678 @lukpueh
Update pep-0458.txt
9c12c3c 
Co-Authored-By: lukpueh <luk.puehringer@gmail.com>
@lukpueh
Merge pull request #71 from mnm678/one_hash_alg
7939f6e 
Only use sha 512
@lukpueh
Replace tuf roles overview image with text table
9bfcef8
@lukpueh
Change tuf role table caption from figure to table
2dbe7be 
Requires updating other captions:
- Figure 2 --> Figure 1
- Table 1, 2, 4 --> Table 2, 3, 4

This commit also removes a stray "and".
@lukpueh
Rename pep-0458-2.png -> pep-0458-1.png
b6f3608
@lukpueh @trishankatdatadog
Update overview of tuf role table
1374e1c 
- Update targets row to say that it signs the targets metadata
- Update snapshot row to mention that it only lists targets and
  targets metadata and why it doesn't list root and timestamp.

Co-Authored-By: Trishank Karthik Kuppusamy <33133073+trishankatdatadog@users.noreply.github.com>
@lukpueh
Merge pull request #73 from lukpueh/table-to-texttable
8b17d9f 
 Replace tuf roles overview image with text table
@lukpueh
Update metadata calc in text after removing sha256
e3a993c 
#71 removed
sha256 hashes from targets metadata and correctly updated the
metadata calculation in the tables, but not in the text.

This commit updates the relevant numbers in the text.

It further fixes an unrelated wording mistake in the metadata
calc section.
@trishankatdatadog
Merge pull request #74 from lukpueh/fix-metadata-calc
af5c9bd 
Update metadata calc in text after removing sha256
@mnm678
explain snapshot revokation
e48667b
@lukpueh
Add padding to fix malformed text table
b5d8c83
@lukpueh
Update "Producing Consistent Snapshots"
bbbf843 
Following discussions with @dstufft and @trishankatdatadog
regarding file uploads and simple index generation on PyPI (see
#70) this commit once more refines the
"producing consistent snapshots" section.

It includes the following changes:

- Remove the notion of *transaction processes* and instead talk
  about *uploads*.
  Background: Transaction processes are only relevant if multiple
  files of a project release need to be handled in a single
  transaction, which is not the case on PyPI, where each upload of
  a distribution file is self-contained.
  With this change, upload process just place files into a queue,
  without updating bin-n metadata (as transaction processes would
  have done in parallel), and all the metadata update/creation work
  is done by the snapshot process in strictly sequential manner.

- Add a paragraph about simple index pages and how their hashes
  should be included in *bin-n* metadata, and how they need to
  remain stable if re-generated dynamically.
@mnm678 @lukpueh
Update pep-0458.txt
6b080bd 
Co-Authored-By: lukpueh <luk.puehringer@gmail.com>
@mnm678
Clarify that an 8 byte integer is not required and reword the version…
6584424 
… number reset to make it more generic
@brainwane
Copy link
Contributor

@trishankatdatadog is this ready for re-review?

@lukpueh
Merge pull request #72 from mnm678/version_scalability
3676031 
Add description of version number scalability
@lukpueh
Copy link
Contributor

lukpueh commented Nov 26, 2019

Mostly yes, @brainwane.

There is one fix that still awaits internal review, i.e. sslab/pep#75, and one concern that is still under discussion, i.e. sslab/pep#68 (see my inline replies to @dstufft's review above for more details).

@JustinCappos
Merge pull request #75 from lukpueh/refine-producing-snapshots
dfbb24e 
Update "Producing Consistent Snapshots"
gvanrossum
gvanrossum reviewed Dec 2, 2019
View reviewed changes
Copy link
Member

@gvanrossum gvanrossum left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Speaking with my PEP Editor hat on.

I feel you all are abusing the PR mechanism here. You shouldn't have the entire discussion in a PR and then expect to land the final PR in one merge. Successive drafts should be merged to the peps repo's master branch quickly, so they can be reviewed by the general public on python.org.

@dstufft If I haven't heard back from anyone before the end of 2019, I'll just land it (probably you can land it yourself too). If you really don't want me to land it but you have nothing else to say, change the PR subject to start with [WIP].

@brainwane
Copy link
Contributor

I suggest that we merge this PR and then post a note within the PEP 458 Discourse thread to have further discussion there.

@gvanrossum
Copy link
Member

Per suggestion by @brainwane, I'll just merge this now.

@gvanrossum gvanrossum merged commit 6d34b86 into python:master Dec 2, 2019
@lukpueh lukpueh mentioned this pull request Dec 3, 2019
Closed
@lukpueh lukpueh mentioned this pull request Dec 11, 2019
Merged
@di di mentioned this pull request Feb 1, 2022
Open
52 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dstufft dstufft dstufft left review comments

@di di di left review comments

@lukpueh lukpueh lukpueh left review comments

@ewdurbin ewdurbin ewdurbin left review comments

@gvanrossum gvanrossum gvanrossum left review comments

@radu-matei radu-matei radu-matei left review comments

Assignees
No one assigned
Labels
CLA signed
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet