/ota-tuf

Scala implementation of TUF repo and tools

Primary LanguageScalaMozilla Public License 2.0MPL-2.0

Ota-tuf

tuf implementation for over the air updates. This project is part of ota-community-edition.

This project is split into multiple modules:

  • reposerver - Manages tuf metadata for tuf repositories
  • keyserver - Manages key generation and online role signing for tuf roles
  • cli - Command line tools to manage a remote tuf repository. See cli/README
  • libtuf/libtuf-server - Dependencies for the other modules

Running

reposerver and keyserver should run as part of ota-community-edition. See cli/README for information on how to run the CLI tools.

You can then use sbt keyserver/run and sbt reposerver/run.

Running tests

You'll need a mariadb instance running with the users configured in application.conf. If you want it quick you can use deploy/ci_setup.sh. This will create a new docker container running a database with the proper permissions.

To run tests simply run sbt test.

To run integration tests:

sbt it:test

The cli module includes a test that requires an nginx to run with the proper TLS certificates, which match the certificates inside a zip file used for the test.

The nginx certificates can be renewed and copied to the correct places with the following command:

cd cli/src/test/resources/mtls-openssl && make clean all

This will require the certificates in the test zip file to be updated, which can be done with:

cd cli/src/test/resources/mtls-openssl && make update-credentials.zip

Continuous Integration

The deploy directory includes scripts required for CI jobs.

License

This code is licensed under the Mozilla Public License 2.0, a copy of which can be found in this repository. All code is copyright HERE Global B.V., 2016-2018.