Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

client/updater design: let user download targets?

See original GitHub issue

This is a future wishlist item for client API (#1135), based on working on pip integration.

Current issues with TUF from pip point of view:

No way to implement progress indication (a current feature) in pip
Difficult to implement parallel downloads in pip (a potential future feature)
No way to control low level HTTP details (authentication, timeouts, concurrency)

Some of these could be fixed by adding more complexity to TUF… but potentially the correct fix is to separate downloading from the other TUF functionality and let the clients do that themselves.

High level functionality list of the client currently looks like this:

generic metadata update (client.updater.Updater.refresh())
target metadata update (client.updater.Updater.get_one_valid_targetinfo())
resolving potential download URLs for target (mirrors.get_list_of_mirrors(), happens during all metadata and target downloads)
local cache check (client.updater.Updater.updated_targets())
downloading target (client.updater.Updater.download_target())
verifying target (happens inside client.updater.Updater.download_target())

Maybe we can optionally let user handle “downloading target” and expose “verifying target” step in a more usable way to the user. This means that “resolving download URLs” must be better exposed to user. Also “local cache check” need re-design: if user downloads files, they also control caching so we can’t expect tuf cache directory structure to exist.

Issue Analytics

State:
Created 3 years ago
Reactions:2
Comments:7 (7 by maintainers)

Top GitHub Comments

1reaction

trishankatdatadogcommented, Oct 7, 2020

Anyway, the community may have its security reasons about not letting the client handle downloads on its own and I would like to hear them before implementing it. (@joshuagl @lukpueh @trishankatdatadog )

As long as we use 3rd-party code to download, we can never guarantee what it actually does.

1reaction

sechkovacommented, Oct 7, 2020

I had a look on the current implementation and I would vote for implementing minimal changes in the current Updater code trying to achieve “let user download targets” sooner and then transfer this to the client refactor.

I have some questions and comments for @jku but I’d appreciate general comments related to the client API:

let user handle “downloading target” and expose “verifying target”

I don’t see a reason why we cannot expose a verify_target function and keep the current download_target (which I would rename to a more explicit download_verified_target but this will change the current API so maybe not). Anyway, the community may have its security reasons about not letting the client handle downloads on its own and I would like to hear them before implementing it. (@joshuagl @lukpueh @trishankatdatadog )

“resolving download URLs” must be better exposed to user

I can speculate what do you mean @jku but can you be more specific 😃 Do you mean adding get_list_of_mirrors or similar to the client module or you dislike something from the function internals?

“local cache check” need re-design

Currently “updated_targets” looks for targets in a path constructed by filepath and destination_directory. Do you think this logic has to be handled by user too? Maybe an example form the pip local cache that don’t match tuf’s expectations?