tuf implementation for over the air updates. This project is part of ota-community-edition.

This project is split into multiple modules:

• reposerver - Manages tuf metadata for tuf repositories
• keyserver - Manages key generation and online role signing for tuf roles
• cli - Command line tools to manage a remote tuf repository. See cli/README
• libtuf/libtuf-server - Dependencies for the other modules

reposerver and keyserver should run as part of ota-community-edition. See cli/README for information on how to run the CLI tools.

You can then use sbt keyserver/run and sbt reposerver/run.

You'll need a mariadb instance running with the users configured in application.conf. If you want it quick you can use deploy/ci_setup.sh. This will create a new docker container running a database with the proper permissions.

To run tests simply run sbt test.

To run integration tests:

sbt it:test

The cli module includes a test that requires an nginx to run with the proper TLS certificates, which match the certificates inside a zip file used for the test.

The nginx certificates can be renewed and copied to the correct places with the following command:

cd cli/src/test/resources/mtls-openssl && make clean all

This will require the certificates in the test zip file to be updated, which can be done with:

cd cli/src/test/resources/mtls-openssl && make update-credentials.zip

The deploy directory includes scripts required for CI jobs.

This code is licensed under the Mozilla Public License 2.0, a copy of which can be found in this repository. All code is copyright ATS Advanced Telematic Systems GmbH, 2016-2018.