Commit graph

3267 commits

Author SHA1 Message Date
Sebastien Awwad
34790634ec
DOC: Clarify update instructions for requirements files
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2019-01-08 10:58:17 -05:00
Sebastien Awwad
cfa8a57b09
Merge pull request #818 from theupdateframework/update_dependencies
Update deps using pip-compile and manual checking in Python2&3
2019-01-07 12:27:09 -05:00
Sebastien Awwad
39e4674e4c
Update deps using pip-compile and manual checking in Python2&3
Also add note about how this is done.

The dev-requirements.txt dependencies that do not appear in
requirements.txt have not been updated.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2019-01-07 11:31:07 -05:00
Walter Lee
1dabb0e046
fixed 404 in last Security link
should be https://github.com/theupdateframework/tuf/blob/develop/docs/SECURITY.md instead of
https://github.com/theupdateframework/tuf/blob/develop/SECURITY.md which is 404
2019-01-07 10:33:10 -05:00
Justin Cappos
12de53e8c2
Merge pull request #811 from theupdateframework/avoid_unnecessary_delegated_targets_role_dls
Avoid unnecessary delegated role downloads
2018-12-31 12:30:05 -05:00
Sebastien Awwad
3b4e0e6458
Fix unnecessary delegated role downloads w/ targets_of_role
If the role you're fetching the targets of is the 'targets' role,
do not download all delegated targets roles....

Continue to do that only if you're fetching the targets of a
delegated targets role, for historical reasons until this
deprecated function is removed / replaced.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-12-07 12:43:04 -05:00
Sebastien Awwad
42689d203f
DOC: loudly mark deprecations of all_targets and targets_of_role
in comments that explain a bit about why, in updater.py.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-12-07 12:42:12 -05:00
Sebastien Awwad
d910c0865a
Merge pull request #809 from theupdateframework/remove_unnecessary_pass_in_exceptions
Satisfy new pylint version by removing 'pass' in class defs...
2018-11-28 12:02:32 -05:00
Sebastien Awwad
4fb4d73093
minor: satisfy new pylint version by removing pass in class defs...
in tuf/exceptions.py, since those class definitions have docstrings,
and that is apparently sufficient in a class definition to make a
'pass' statement unnecessary.  pylint version 2.2.0 complains about
unnecessary pass statements in this situation, so this resolves that.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-28 10:18:49 -05:00
Sebastien Awwad
ea224024d3
Merge pull request #796 from michizhou/develop
Added command-line option explanations and usage examples for CLI scripts
2018-11-19 11:07:03 -05:00
Sebastien Awwad
fffc53321b
Merge pull request #803 from theupdateframework/test_delay_increases
test: Remove port collison chance and lengthen delays for AppVeyor
2018-11-14 13:39:23 -05:00
Sebastien Awwad
dab9a733e7
Merge pull request #792 from theupdateframework/clarify_updated_targets_docstring
DOC: Clarify docstring of updater.updated_targets
2018-11-14 11:42:38 -05:00
Sebastien Awwad
90a1b77a46
DOC: correct outdated comments in test_proxy_use.py
relevant to the version of Python required for the proxy tests.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-14 11:39:31 -05:00
Sebastien Awwad
37919cb30a
Merge branch 'update_deps' into develop
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-14 11:38:58 -05:00
Sebastien Awwad
8866abbb83
test: remove port collison chance and lengthen delays for AppVeyor
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-14 10:54:02 -05:00
pyup-bot
e6283ce5ac
Update requests from 2.20.0 to 2.20.1
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-14 10:28:33 -05:00
pyup-bot
7305c1848b
Update pbr from 5.1.0 to 5.1.1
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-14 10:28:25 -05:00
pyup-bot
702d78be7f
Update cryptography from 2.3.1 to 2.4.1
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-14 10:27:38 -05:00
Sebastien Awwad
dad9f9f11b
test: extend sleep in testing after spawning server processes
This adds to PR #799; please see that for details.  In short,
tests sometimes fail on slow test systems (primarily on AppVeyor)
if we don't have long enough delays.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-06 09:59:24 -05:00
Sebastien Awwad
e99ff85b2c
test: extend a delay in testing after spawning server processes
This adds to PR #799; please see that for details.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 16:28:59 -05:00
Sebastien Awwad
0380b652bd
Merge pull request #799 from theupdateframework/longer_testing_delays_for_appveyor
test: Delay more when spawning test servers to avoid rare failures
2018-11-05 16:18:53 -05:00
Sebastien Awwad
375ef4bd0d
test: Delay more when spawning test servers to avoid rare failures
on AppVeyor during automatic testing.  Also explains a bit better
the reason for those delays, in the comments adjacent to them.

AppVeyor was occasionally laggy enough that spawning a separate
server process didn't happen fast enough for the included delays,
so connection attempts in the tests occasionally failed.

This lengthens a few 0.3s delays that I've seen pop up in test
failures to 2s delays, along with a few others for good measure.
Sadly, this slows testing a bit.... I'll keep an eye out for more
of these.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 16:14:33 -05:00
Justin Cappos
a372410944
Adopters update. 2018-11-05 16:14:30 -05:00
Sebastien Awwad
5fe0a8312f
Merge pull request #798 from theupdateframework/dependencies_update
Dependencies update
2018-11-05 16:11:16 -05:00
Sebastien Awwad
23cfcbe783
Bump version to 0.11.2.dev2 from 0.11.2.dev1
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:57:05 -05:00
pyup-bot
4c7ee1d5ab
Update urllib3 from 1.23 to 1.24.1
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:52:20 -05:00
pyup-bot
32f1acfa5b
Update certifi from 2018.8.24 to 2018.10.15
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:52:17 -05:00
pyup-bot
8e5c2a1567
Update virtualenv from 16.0.0 to 16.1.0
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:52:13 -05:00
pyup-bot
dde55697a8
Update tox from 3.4.0 to 3.5.3
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:52:08 -05:00
pyup-bot
fd9b225e2a
Update stevedore from 1.29.0 to 1.30.0
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:52:04 -05:00
pyup-bot
496d3dccb5
Update smmap2 from 2.0.4 to 2.0.5
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:52:00 -05:00
pyup-bot
d8d7e50500
Update requests from 2.19.1 to 2.20.0
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:51:42 -05:00
pyup-bot
98a491ef5e
Update py from 1.6.0 to 1.7.0
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:51:40 -05:00
pyup-bot
a14ea7c8dc
Update pluggy from 0.7.1 to 0.8.0
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:51:36 -05:00
pyup-bot
fa2414c348
Update pbr from 4.2.0 to 5.1.0
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:51:32 -05:00
pyup-bot
3f3a90e785
Update ipaddress from 1.0.21 to 1.0.22
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:51:28 -05:00
pyup-bot
5a7c14ea69
Update gitdb2 from 2.0.4 to 2.0.5
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:51:18 -05:00
pyup-bot
3171f00615
Update colorama from 0.3.9 to 0.4.0
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-11-05 15:50:58 -05:00
Michael Zhou
bcbb213613 Added command-line option explanations and usage examples
Signed-off-by: Michael Zhou <myz227@nyu.edu>
2018-11-03 10:48:05 -04:00
Justin Cappos
7e0c4cc29f
Update ADOPTERS.md 2018-10-16 15:10:06 -04:00
Sebastien Awwad
61179ea32b
DOC: Clarify docstring of updater.updated_targets
It was somewhere between misleading and vague, potentially implying
that it contacts the repository and/or serves as an alternative to
get_one_valid_target_info().

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-16 11:30:08 -04:00
Justin Cappos
5d58ea7a81
Explaining GOVERNANCE structure to better match CNCF graduation ask 2018-10-11 10:50:47 -04:00
Sebastien Awwad
4923a888ac
Merge branch 'bump_version_0_11_2_dev1' into develop
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-03 12:04:31 -04:00
Sebastien Awwad
73f3289942
Bump version to 0.11.2.dev1 for PyPI dev release
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-03 11:59:56 -04:00
Sebastien Awwad
8db7f045f9
Merge branch 'bump_version_0_11_2_dev' into develop
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-02 22:42:27 -04:00
Sebastien Awwad
cdc0e4dc91
Add updated Python2 dependencies to requirements.txt
(instead of just Python3 dependencies)

Indirect dependencies differ slightly in Python2 and Python3.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-02 22:41:24 -04:00
Sebastien Awwad
24a10b5527
Update dependencies and bump version to 0.11.2-alpha
for an alpha release.

Update dependencies:
bandit, py, pycparser, pynacl, securesystemslib, tox

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-02 22:24:14 -04:00
Sebastien Awwad
9cd2d3a0ab
Merge branch 'trishankatdatadog/fix-for-https-proxies' into develop
Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-02 17:24:19 -04:00
Sebastien Awwad
01d8d9e780
Test: tighten test-skip conditions and lengthen a subprocess sleep
After seeing some AppVeyor failures, I've increased the wait after
starting test HTTP, HTTPS, and proxy servers from 0.5s to 1s, to make
it less likely that tests will fail because the servers weren't done
starting up yet.

After some review comments by @aaaaalbert, I've tightened the logic
in aggregate_tests.py around which tests to skip unless a certain
Python version is running, and added some consistency checks.
This also involved a bit of clarification of comments and variable
names.

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-02 17:06:20 -04:00
Sebastien Awwad
ebcb17bbef
Test: clear requests sessions when updating expected ssl certs
to make sure that the test uses the intended certificate. (There's some
indirect indication that the updated environment variable might not always
have been used.)

Signed-off-by: Sebastien Awwad <sebastien.awwad@gmail.com>
2018-10-02 15:49:39 -04:00