Refactor format_metadata_to_key

[MVrachev]

Fixes issue #:

#220

Description of the changes being introduced by the pull request:

Refactor format_metadata_to_key so that it won't depend
on settings.HASH_ALGORITHMS.
There are couple of code snippets in tuf where in order to provide
a custom list of hash algorithms, tuf is temporary changing
settings.HASH_ALGORITHMS and then returning it to its formal state.

This could lead to problems in future and one should
be able to control hash algorithms used for generating keyids in f
ormat_metadata_to_key() without having to change
package level settings in securesystemslib.settings.

Please verify and check that the pull request fulfils the following
requirements:

• The code follows the Code Style Guidelines
• Tests have been added for the bug fix or new feature
• Docs have been added for the bug fix or new feature

[coveralls]

Coverage increased (+0.001%) to 98.944% when pulling 5908bfb on MVrachev:refactor-format-metadata-to-key into df57705 on secure-systems-lab:master.

[joshuagl]

Thanks for the patch @MVrachev. I've made some minor suggestions on the code.

It's worth noting that this PR conflicts with #225

[lukpueh]

Thanks for the patch, @MVrachev! This will make the interface a lot cleaner. Please resolve the git conflict and fix the test (see inline).

Also, be aware that default values in functions are only evaluated once when the function definition is evaluated. This has bitten me before (see #202). As a consequence, constructs like these won't be possible anymore.

# The default arg is evaluated together with the function definition on first import:
# format_metadata_to_key(key_metadata, hash_algorithms=['sha256', 'sha512'])
import securesystemslib.keys
import securesystemslib.settings

securesystemslib.settings.HASH_ALGORITHMS = ["blake2"]

format_metadata_to_key(key_metadata)
# the default for hash_algorithms still is ['sha256', 'sha512'] and not ["blake2"]

We shouldn't use constructs like these anyway and you already have a fix for TUF in the queue (theupdateframework/python-tuf#1016, thanks!), but given that this interface was used like this before, we maybe want to mention that backwards incompatibility in the CHANGELOG for the next release (mostly a note to myself).

[joshuagl]

Thanks for making the suggested changes, Martin. Could you address the remaining minor nit?

[joshuagl]

This change looks good, thank you.

I would like to hold off on merging it until we have a solid release out to support tuf changes related to the Warehouse work for pep 458, because I anticipate that this will be the first of several API changes as we work to remove the settings module (re: #219) and I would like us to include those in one release rather than spread them over multiple releases.

We just had the 0.15.0 release with abstract files & directories support. Next we'll want a release with the HSM support in #229. Then we'll have all of the features required of PEP 458 and can start landing changes like this towards #219.

It would be really nice if we tested format_metadata_to_key with non-default parameters too, do you think you could work on a patch for that in this PR @MVrachev ?

[joshuagl]

Also, be aware that default values in functions are only evaluated once when the function definition is evaluated. This has bitten me before (see #202). As a consequence, constructs like these won't be possible anymore.

# The default arg is evaluated together with the function definition on first import:
# format_metadata_to_key(key_metadata, hash_algorithms=['sha256', 'sha512'])
import securesystemslib.keys
import securesystemslib.settings

securesystemslib.settings.HASH_ALGORITHMS = ["blake2"]

format_metadata_to_key(key_metadata)
# the default for hash_algorithms still is ['sha256', 'sha512'] and not ["blake2"]

I've been wondering what the right pattern for this is. Maybe something like:

def format_metadata_to_key(key_metadata, default_keyid=None,
  keyid_hash_algorithms=None):
  # docstrings and stuff ...
  if keyid_hash_algorithms is None:
    keyid_hash_algorithms = securesystemslib.settings.HASH_ALGORITHMS
  # ... rest of the function

That way we don't bind the default value at function evaluation and we allow users to continue with the current pattern of assigning securesystemslib.settings.HASH_ALGORITHMS, making this change less of an API break. We're also a little bit cleaner in our intent to deprecate the settings module as we don't encode it in the interface (by using a variable from the module as a default value).

[trishankatdatadog]

I've been wondering what the right pattern for this is. Maybe something like:

Good idea, I like it!

[MVrachev]

I rebased and addressed Joshua's comments. I changed the following:

1. Renamed has_algorithms to keyid_hash_algorithms

2. Use the approach proposed from Joshua Lock about handling the default value of keyid_hash_algorithms

3. Added a new commit adding unit tests using nondefault hash algorithms.

[joshuagl]

Thanks @MVrachev. This is looking good. I made some minor style and layout suggestions for the tests to keep them readable and maintainable, would you be able to address?

[joshuagl]

Same question on matches() vs check_match() here.

[joshuagl]

This looks good, thanks @MVrachev. One minor question.

[joshuagl]

Nit: I think copy would suffice here?

[MVrachev]

Yes, you are right.

I overdo it a little to make sure the right values were copied but forgot to try with copy.copy.

I made the change and amended.

[lukpueh]

Thanks, @MVrachev! Please consider addressing my two minor style comments. Otherwise this looks good to me.

[lukpueh]

Minor nit: Please use double-indentation (4 spaces) for line continuation.

[lukpueh]

See comment above about line continuation.

[MVrachev]

Fixed the indentation.

[MVrachev]

Thanks for merging that pr @joshuagl!
I will update the corresponding pr theupdateframework/python-tuf#1016 in TUF next week.