diff options
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/development/getting-started.rst | 89 | ||||
| -rw-r--r-- | docs/development/index.rst | 18 | ||||
| -rw-r--r-- | docs/development/reviewing-patches.rst | 56 | ||||
| -rw-r--r-- | docs/development/submitting-patches.rst (renamed from docs/contributing.rst) | 164 | ||||
| -rw-r--r-- | docs/index.rst | 2 | ||||
| -rw-r--r-- | docs/spelling_wordlist.txt | 1 |
6 files changed, 197 insertions, 133 deletions
diff --git a/docs/development/getting-started.rst b/docs/development/getting-started.rst new file mode 100644 index 00000000..412f0545 --- /dev/null +++ b/docs/development/getting-started.rst @@ -0,0 +1,89 @@ +Getting Started +=============== + +Working on ``cryptography`` requires the installation of a small number of +development dependencies. These are listed in ``dev-requirements.txt`` and they +can be installed in a `virtualenv`_ using `pip`_. Once you've installed the +dependencies, install ``cryptography`` in ``editable`` mode. For example: + +.. code-block:: console + + $ # Create a virtualenv and activate it + $ pip install --requirement dev-requirements.txt + $ pip install --editable . + +You are now ready to run the tests and build the documentation. + +Running Tests +~~~~~~~~~~~~~ + +``cryptography`` unit tests are found in the ``tests/`` directory and are +designed to be run using `pytest`_. `pytest`_ will discover the tests +automatically, so all you have to do is: + +.. code-block:: console + + $ py.test + ... + 62746 passed in 220.43 seconds + +This runs the tests with the default Python interpreter. + +You can also verify that the tests pass on other supported Python interpreters. +For this we use `tox`_, which will automatically create a `virtualenv`_ for +each supported Python version and run the tests. For example: + +.. code-block:: console + + $ tox + ... + ERROR: py26: InterpreterNotFound: python2.6 + py27: commands succeeded + ERROR: pypy: InterpreterNotFound: pypy + ERROR: py32: InterpreterNotFound: python3.2 + py33: commands succeeded + docs: commands succeeded + pep8: commands succeeded + +You may not have all the required Python versions installed, in which case you +will see one or more ``InterpreterNotFound`` errors. + + +Explicit Backend Selection +~~~~~~~~~~~~~~~~~~~~~~~~~~ + +While testing you may want to run tests against a subset of the backends that +cryptography supports. Explicit backend selection can be done via the +``--backend`` flag. This flag should be passed to ``py.test`` with a comma +delimited list of backend names. + + +.. code-block:: console + + $ tox -- --backend=openssl + $ py.test --backend=openssl,commoncrypto + +Building Documentation +~~~~~~~~~~~~~~~~~~~~~~ + +``cryptography`` documentation is stored in the ``docs/`` directory. It is +written in `reStructured Text`_ and rendered using `Sphinx`_. + +Use `tox`_ to build the documentation. For example: + +.. code-block:: console + + $ tox -e docs + ... + docs: commands succeeded + congratulations :) + +The HTML documentation index can now be found at +``docs/_build/html/index.html``. + +.. _`pytest`: https://pypi.python.org/pypi/pytest +.. _`tox`: https://pypi.python.org/pypi/tox +.. _`virtualenv`: https://pypi.python.org/pypi/virtualenv +.. _`pip`: https://pypi.python.org/pypi/pip +.. _`sphinx`: https://pypi.python.org/pypi/Sphinx +.. _`reStructured Text`: http://sphinx-doc.org/rest.html diff --git a/docs/development/index.rst b/docs/development/index.rst new file mode 100644 index 00000000..c0272299 --- /dev/null +++ b/docs/development/index.rst @@ -0,0 +1,18 @@ +Development +=========== + +As an open source project, ``cryptography`` welcomes contributions of all +forms. The sections below will help you get started. + +File bugs and feature requests on our issue tracker on `GitHub`_. If it is a +bug check out `what to put in your bug report`_. + +.. toctree:: + :maxdepth: 2 + + getting-started + submitting-patches + reviewing-patches + +.. _`GitHub`: https://github.com/pyca/cryptography +.. _`what to put in your bug report`: http://www.contribution-guide.org/#what-to-put-in-your-bug-report diff --git a/docs/development/reviewing-patches.rst b/docs/development/reviewing-patches.rst new file mode 100644 index 00000000..302c998e --- /dev/null +++ b/docs/development/reviewing-patches.rst @@ -0,0 +1,56 @@ +Reviewing/Merging Patches +========================= + +Everyone is encouraged to review open pull requests. When reviewing a patch try +to keep each of these concepts in mind: + +Architecture +------------ + +* Is the proposed change being made in the correct place? Is it a fix in a + backend when it should be in the primitives? + +Intent +------ + +* What is the change being proposed? +* Do we want this feature or is the bug they're fixing really a bug? + +Implementation +-------------- + +* Does the change do what the author claims? +* Are there sufficient tests? +* Has it been documented? +* Will this change introduce new bugs? + +Grammar/Style +------------- + +These are small things that are not caught by the automated style checkers. + +* Does a variable need a better name? +* Should this be a keyword argument? + +Merge Requirements +------------------ + +Because cryptography is so complex, and the implications of getting it wrong so +devastating, ``cryptography`` has a strict merge policy for committers: + +* Patches must *never* be pushed directly to ``master``, all changes (even the + most trivial typo fixes!) must be submitted as a pull request. +* A committer may *never* merge their own pull request, a second party must + merge their changes. If multiple people work on a pull request, it must be + merged by someone who did not work on it. +* A patch that breaks tests, or introduces regressions by changing or removing + existing tests should not be merged. Tests must always be passing on + ``master``. +* If somehow the tests get into a failing state on ``master`` (such as by a + backwards incompatible release of a dependency) no pull requests may be + merged until this is rectified. +* All merged patches must have 100% test coverage. + +The purpose of these policies is to minimize the chances we merge a change +that jeopardizes our users' security. + diff --git a/docs/contributing.rst b/docs/development/submitting-patches.rst index 87075638..5978a1d6 100644 --- a/docs/contributing.rst +++ b/docs/development/submitting-patches.rst @@ -1,40 +1,14 @@ -Contributing -============ - -Process -------- - -As an open source project, ``cryptography`` welcomes contributions of all -forms. These can include: - -* Bug reports and feature requests -* Pull requests for both code and documentation -* Patch reviews - -You can file bugs and submit pull requests on `GitHub`_. To discuss larger -changes you can start a conversation on `our mailing list`_. - -Because cryptography is so complex, and the implications of getting it wrong so -devastating, ``cryptography`` has a strict code review policy: - -* Patches must *never* be pushed directly to ``master``, all changes (even the - most trivial typo fixes!) must be submitted as a pull request. -* A committer may *never* merge their own pull request, a second party must - merge their changes. If multiple people work on a pull request, it must be - merged by someone who did not work on it. -* A patch that breaks tests, or introduces regressions by changing or removing - existing tests should not be merged. Tests must always be passing on - ``master``. -* If somehow the tests get into a failing state on ``master`` (such as by a - backwards incompatible release of a dependency) no pull requests may be - merged until this is rectified. -* All merged patches must have 100% test coverage. +Submitting Patches +================== + +* Always make a new branch for your work. +* Patches should be small to facilitate easier review. `Studies have shown`_ + that review quality falls off as patch size grows. Sometimes this will result + in many small PRs to land a single large feature. +* Larger changes should be discussed on `our mailing list`_ before submission. * New features and significant bug fixes should be documented in the :doc:`/changelog`. -The purpose of these policies is to minimize the chances we merge a change -that jeopardizes our users' security. - If you believe you've identified a security issue in ``cryptography``, please follow the directions on the :doc:`security page </security>`. @@ -163,28 +137,19 @@ this: static const unsigned int SOME_UNSIGNED_INTEGER_LITERAL; static const char *const SOME_STRING_LITERAL; -Documentation -------------- +Tests +----- -All features should be documented with prose. +All code changes must be accompanied by unit tests with 100% code coverage (as +measured by the combined metrics across our build matrix). -Docstrings should be written like this: +When implementing a new primitive or recipe ``cryptography`` requires that you +provide a set of test vectors. -.. code-block:: python - - def some_function(some_arg): - """ - Does some things. - - :param some_arg: Some argument. - """ - -So, specifically: +Documentation +------------- -* Always use three double quotes. -* Put the three double quotes on their own line. -* No blank line at the end. -* Use Sphinx parameter/attribute documentation `syntax`_. +All features should be documented with prose in the ``docs`` section. Because of the inherent challenges in implementing correct cryptographic systems, we want to make our documentation point people in the right directions @@ -208,92 +173,27 @@ should begin with the "Hazardous Materials" warning: When referring to a hypothetical individual (such as "a person receiving an encrypted message") use gender neutral pronouns (they/them/their). -Development Environment ------------------------ - -Working on ``cryptography`` requires the installation of a small number of -development dependencies. These are listed in ``dev-requirements.txt`` and they -can be installed in a `virtualenv`_ using `pip`_. Once you've installed the -dependencies, install ``cryptography`` in ``editable`` mode. For example: - -.. code-block:: console - - $ # Create a virtualenv and activate it - $ pip install --requirement dev-requirements.txt - $ pip install --editable . - -You are now ready to run the tests and build the documentation. - -Running Tests -~~~~~~~~~~~~~ - -``cryptography`` unit tests are found in the ``tests/`` directory and are -designed to be run using `pytest`_. `pytest`_ will discover the tests -automatically, so all you have to do is: +Docstrings are typically only used when writing abstract classes, but should +be written like this if required: -.. code-block:: console - - $ py.test - ... - 62746 passed in 220.43 seconds - -This runs the tests with the default Python interpreter. - -You can also verify that the tests pass on other supported Python interpreters. -For this we use `tox`_, which will automatically create a `virtualenv`_ for -each supported Python version and run the tests. For example: - -.. code-block:: console - - $ tox - ... - ERROR: py26: InterpreterNotFound: python2.6 - py27: commands succeeded - ERROR: pypy: InterpreterNotFound: pypy - ERROR: py32: InterpreterNotFound: python3.2 - py33: commands succeeded - docs: commands succeeded - pep8: commands succeeded - -You may not have all the required Python versions installed, in which case you -will see one or more ``InterpreterNotFound`` errors. - - -Explicit Backend Selection -~~~~~~~~~~~~~~~~~~~~~~~~~~ - -While testing you may want to run tests against a subset of the backends that -cryptography supports. Explicit backend selection can be done via the -``--backend`` flag. This flag should be passed to ``py.test`` with a comma -delimited list of backend names. To use it with ``tox`` you must pass it as -``tox -- --backend=openssl``. - -Building Documentation -~~~~~~~~~~~~~~~~~~~~~~ - -``cryptography`` documentation is stored in the ``docs/`` directory. It is -written in `reStructured Text`_ and rendered using `Sphinx`_. +.. code-block:: python -Use `tox`_ to build the documentation. For example: + def some_function(some_arg): + """ + Does some things. -.. code-block:: console + :param some_arg: Some argument. + """ - $ tox -e docs - ... - docs: commands succeeded - congratulations :) +So, specifically: -The HTML documentation index can now be found at -``docs/_build/html/index.html``. +* Always use three double quotes. +* Put the three double quotes on their own line. +* No blank line at the end. +* Use Sphinx parameter/attribute documentation `syntax`_. -.. _`GitHub`: https://github.com/pyca/cryptography -.. _`our mailing list`: https://mail.python.org/mailman/listinfo/cryptography-dev .. _`Write comments as complete sentences.`: http://nedbatchelder.com/blog/201401/comments_should_be_sentences.html .. _`syntax`: http://sphinx-doc.org/domains.html#info-field-lists -.. _`pytest`: https://pypi.python.org/pypi/pytest -.. _`tox`: https://pypi.python.org/pypi/tox -.. _`virtualenv`: https://pypi.python.org/pypi/virtualenv -.. _`pip`: https://pypi.python.org/pypi/pip -.. _`sphinx`: https://pypi.python.org/pypi/Sphinx -.. _`reStructured Text`: http://sphinx-doc.org/rest.html +.. _`Studies have shown`: http://www.ibm.com/developerworks/rational/library/11-proven-practices-for-peer-review/ +.. _`our mailing list`: https://mail.python.org/mailman/listinfo/cryptography-dev diff --git a/docs/index.rst b/docs/index.rst index 19feb603..c8ef41b6 100644 --- a/docs/index.rst +++ b/docs/index.rst @@ -79,7 +79,7 @@ The ``cryptography`` open source project :maxdepth: 2 installation - contributing + development/index security api-stability doing-a-release diff --git a/docs/spelling_wordlist.txt b/docs/spelling_wordlist.txt index cf421ea6..b258420f 100644 --- a/docs/spelling_wordlist.txt +++ b/docs/spelling_wordlist.txt @@ -3,6 +3,7 @@ backends boolean ciphertext committer +committers crypto cryptographic cryptographically |