Section 4.4 File formats: snapshot.json: "It MUST list the
version numbers of the top-level targets metadata and all delegated targets
metadata."
Section 5.6.7 search for metadata: "if
any metadata requested in steps 5.6.7.1 - 5.6.7.2 cannot be downloaded nor
validated, end the search and report that the target cannot be found."
I presume then that a client MUST NOT report the non-conformant snapshot.json, and instead MUST report simply target-not-found. I believe the conformance test does present a delegation to a role not present in snapshot.json in its fast-forward-recovery test. If the conformance client throws an error, the conformance test fails.
Is this intentional? If so, would it be better to make section 4.4 "it SHOULD list the version numbers for all delegated targets metadata"? Or should it be acceptable for the client to throw an error if there are delegated roles not present in the snapshot?
Thanks!
Martin Harriman