Ukukhishwa kwe-TUF 1.0 (The Update Framework) kushicilelwe, kuhlinzeka ngamathuluzi okuhlola ngokuphephile nokulanda izibuyekezo. Umgomo oyinhloko wephrojekthi ukuvikela iklayenti ekuhlaselweni okuvamile kwamakhosombe nengqalasizinda, okuhlanganisa ukumelana nokukhuthazwa ngabahlaseli bezibuyekezo eziqanjiwe ezidalwe ngemva kokuthola ukufinyelela kokhiye bokukhiqiza amasiginesha edijithali noma ukubeka engcupheni indawo yokugcina. Le phrojekthi ithuthukiswe ngaphansi kwe-Linux Foundation futhi isetshenziselwa ukuthuthukisa ukuphepha kokulethwa kwesibuyekezo kumaphrojekthi afana ne-Docker, i-Fuchsia, i-Automotive Grade Linux, i-Bottlerocket ne-PyPI (ukufakwa kokuqinisekisa ukulanda kanye nemethadatha ku-PyPI kulindeleke ku- esikhathini esizayo esiseduze). Ikhodi yokusebenzisa ireferensi ye-TUF ibhalwe ngePython futhi isatshalaliswa ngaphansi kwelayisensi ye-Apache 2.0.
Le phrojekthi ithuthukisa uchungechunge lwemitapo yolwazi, amafomethi wefayela kanye nezinsiza ezingahlanganiswa kalula ezinhlelweni ezikhona zokuvuselela izinhlelo zokusebenza, ezihlinzeka ngokuvikeleka uma kwenzeka kuba nengozi ebalulekile ohlangothini lwabathuthukisi be-software. Ukuze usebenzise i-TUF, kwanele ukwengeza imethadatha edingekayo endaweni yokugcina, futhi uhlanganise izinqubo ezihlinzekwe ku-TUF zokulanda nokuqinisekisa amafayela kukhodi yeklayenti.
Uhlaka lwe-TUF luthatha imisebenzi yokubheka isibuyekezo, ukulanda isibuyekezo, nokuqinisekisa ubuqotho baso. Isistimu yokufaka isibuyekezo ayiphazamisi ngokuqondile imethadatha eyengeziwe, ukuqinisekiswa nokulayishwa kwayo okwenziwa yi-TUF. Ukuze kuhlanganiswe nezinhlelo zokusebenza kanye nezinhlelo zokuvuselela ezifakiwe, i-API yezinga eliphansi lokufinyelela imethadatha kanye nokuqaliswa kwe-API ngclient yeklayenti eliphezulu, elungele ukuhlanganiswa nezinhlelo zokusebenza, inikezwa.
Phakathi kokuhlaselwa i-TUF engakwazi ukumelana nayo ukufakwa esikhundleni sokukhishwa okudala ngaphansi kwesigubuzelo sezibuyekezo ukuze kuvinjwe ukulungiswa kokuba sengozini kwesofthiwe noma ukubuyisela emuva komsebenzisi enguqulweni endala esengozini, kanye nokuthuthukiswa kwezibuyekezo ezinonya ezisayinwe kahle kusetshenziswa inguqulo eyonakalisiwe. key, i-DoS ihlasela amakhasimende, njengokugcwalisa idiski ngezibuyekezo ezingapheli.
Ukuvikela ekulimaleni ingqalasizinda yomhlinzeki wesofthiwe kufinyelelwa ngokugcina amarekhodi ahlukene, aqinisekiswayo esimo senqolobane noma isicelo. Imethadatha eqinisekiswe yi-TUF ihlanganisa ulwazi olumayelana nokhiye abangathenjwa, ama-cryptographic hashe ukuze kuhlolwe ubuqotho bamafayela, amasiginesha edijithali engeziwe ukuze kuqinisekiswe imethadatha, ulwazi olumayelana nezinombolo zenguqulo, nolwazi olumayelana nokuphila kwamarekhodi. Okhiye abasetshenziselwa ukuqinisekiswa banesikhathi sokuphila esilinganiselwe futhi badinga ukubuyekezwa njalo ukuze bavikeleke ekubunjweni kwesiginesha ngokhiye abadala.
Ukunciphisa ubungozi bokuyekethisa kulo lonke uhlelo kufinyelelwa ngokusebenzisa imodeli yokuthembana okwabelwana ngayo, lapho iqembu ngalinye lilinganiselwe kuphela endaweni elibophezeleke kuyo ngokuqondile. Uhlelo lusebenzisa izigaba zezindima ezinokhiye bazo, isibonelo, indima yezimpande izikhiye zezindima ezibhekele imethadatha endaweni yokugcina izinto, idatha ngesikhathi sokwenziwa kwezibuyekezo kanye nemihlangano eqondiwe, kanjalo, indima ebhekele izimpawu zemihlangano. izindima ezihlobene nesitifiketi samafayela alethiwe.
Ukuze kuvikelwe ebucayini obuyinhloko, kusetshenziswa indlela yokuhoxisa ngokushesha nokushintshwa kokhiye. Ukhiye ngamunye uqukethe amandla amancane adingekayo kuphela, futhi imisebenzi yokuqinisekisa idinga ukusetshenziswa kwezikhiye eziningana (ukuvuza kokhiye owodwa akuvumeli ukuhlaselwa ngokushesha kweklayenti, futhi ukuphazamisa lonke uhlelo, okhiye babo bonke abahlanganyeli kufanele banjiwe). Iklayenti lingamukela kuphela amafayela akamuva kakhulu kunamafayela atholwe ngaphambilini, futhi idatha ilandwa kuphela ngokuya ngosayizi oshiwo kumethadatha eqinisekisiwe.
Ukukhishwa okushicilelwe kwe-TUF 1.0.0 kunikeza ukuqaliswa kwesethenjwa esibhalwe kabusha futhi esizinzile sokucaciswa kwe-TUF ongakusebenzisa njengesibonelo esenziwe ngomumo lapho udala okwakho ukuqalisa noma ukuhlanganiswa kumaphrojekthi akho. Ukuqaliswa okusha kuqukethe ikhodi encane kakhulu (imigqa ye-1400 esikhundleni se-4700), kulula ukuyigcina futhi inganwetshwa kalula, isibonelo, uma kudingekile ukwengeza ukusekelwa kwezitaki zenethiwekhi ezithile, izinhlelo zokugcina noma ama-algorithms wokubethela.
Source: opennet.ru