Several incompatibilities with master branch of securesystemslib #913
Description
As part of my work to remove securesystemslib.util.TempFile in secure-systems-lab/securesystemslib#180 I need to be able to test tuf against a locally installed copy of securesystemslib.
It turns out that there are several incompatibilities between tuf and the master branch of securesystemslib (perhaps unsurprisingly, there are 214 commits to ssl since the 0.11.3 release). I've started working through the errors, but wanted to file this so that there's a record of the work and to have a discussion area.
There are at least two existing PRs which address some of the issues:
- Adjust to removals from securesystemslib Adjust to removals from securesystemslib #855
- Use TUF specific RELPATH[S]_SCHEMA formats as they have been removed from securesystemslib Use TUF specific formats as they have been removed from securesystemslib #912
These don't break compatibility with the testing against ssl 0.11.3 that's currently happening in CI, however I'm anticipating that some of the changes that will need to be made will either a) be incompatible or b) require different codepaths for different ssl versions.
I'd welcome thoughts on whether backward compatibility is a goal or whether we just need to request a release of ssl and require that version once the changes are ready?
It would be good to add some CI testing against ssl master as part of resolving this issue, but I haven't figure out how to handle that yet. My local testing is using a venv and pip installing my copy of securesystemslib and tuf, before running the tests against the venv with:
$ coverage run aggregate_tests.py