Erick Tryzelaar
Erick Tryzelaar
Should the TUF update workflow eventually succeed even if non-volatile storage writes always fails?
In https://github.com/heartsucker/rust-tuf/pull/304, I'm extending rust-tuf to fail an update if writing to non-volatile storage fails. However, in https://github.com/heartsucker/rust-tuf/pull/304/files#r512292123, @wellsie1116 noticed an odd consequence to the update workflow, where even though...
While TUF protects against a malicious server tricking a client into rolling back metadata (especially if we can land #106), it doesn't have any protections against an attacker who has...
On Fuchsia, we are using TUF not only to fetch new packages, but also as a file system implementation to launch packages (see [this](https://fuchsia.dev/fuchsia-src/concepts/packages/package_url) for more details). For a long...
I am currently doing some exploration into how clients should handle interrupted, partially successful updates. For example, say we have a client that has a local cached copy of valid...
In section 5.1.9, it states: > 1.9. If the timestamp and / or snapshot keys have been rotated, then delete the trusted timestamp and snapshot metadata files. This is done...
In section 4.2, the spec states that RSA public keys are stored in PEM format, but may be vague. RSA PEM keys support two forms of encoding, RSAPublicKey form, as...
Similar to #50, Kafka 0.9.0 added support for SASL/Kerboros authentication in [KAFKA-1686](https://issues.apache.org/jira/browse/KAFKA-1686), so it'd be also nice if this library supported it. I've started framing out a [GSSAPI binding](https://github.com/erickt/rust-gssapi) which...
I'm finding the hitbox for getting an example on Chrome 86 to be quite tiny with the default CSS. For example, for https://tabatkins.github.io/bikeshed/#example-e79df413, it seems the hitbox is approximately 2...
The TUF spec says delegation [pathpattern](https://theupdateframework.github.io/specification/latest/#pathpattern)s support unix shell-style pattern matching, but that's not supported in rust-tuf yet.
While writing a delegation builder, I noticed that while we have a test for [diamond delegations](https://github.com/theupdateframework/rust-tuf/blob/3961b36e195a18189459ee2513d52aeb5ec27576/tuf/tests/integration.rs#L306), it doesn't actually work. Consider this delegation tree: ``` targets / \ A B...