Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: add local sign/verification for OCI layout directory #288

Merged
merged 40 commits into from
Apr 19, 2023
Merged

feat: add local sign/verification for OCI layout directory #288

merged 40 commits into from
Apr 19, 2023

Conversation

patrickzheng200
Copy link
Contributor

This PR modified Registry and Notation packages to incorporate local sign and verification of OCI layout directory.
This PR targets the RC.4 release. (Note, support of OCI layout tarball will be included in future releases after RC.4.)

@Two-Hearts
added local signing support for oci layout folder
64d9c76 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
updated verify
8e24501 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
updated registry
de2c80d 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
added local verification
1b2538b 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
update
49c488f 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
err msg
dc14e9b 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
update
4ad95b9 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
Merge branch 'notaryproject:main' into local
64b92a6
@Two-Hearts
fixed unit tests
c248554 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
added local sign/verification for oci layout directory
884f66e 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
update
5e03411 
Signed-off-by: Patrick Zheng <[email protected]>
@patrickzheng200 patrickzheng200 self-assigned this Mar 14, 2023
@patrickzheng200 patrickzheng200 added the enhancement New feature or request label Mar 14, 2023
@patrickzheng200 patrickzheng200 added this to the RC-4 milestone Mar 14, 2023
@patrickzheng200 patrickzheng200 marked this pull request as draft March 14, 2023 11:14
@patrickzheng200 patrickzheng200 changed the title Feat: Added local sign/verification for OCI layout directory Feat: Added local sign/verification for OCI layout directory [Draft] Mar 14, 2023
@Two-Hearts
fixed unit tests
7cd4c8e 
Signed-off-by: Patrick Zheng <[email protected]>
@patrickzheng200 patrickzheng200 changed the title Feat: Added local sign/verification for OCI layout directory [Draft] Feat: Added local sign/verification for OCI layout directory Mar 14, 2023
@patrickzheng200 patrickzheng200 marked this pull request as ready for review March 14, 2023 13:06
@shizhMSFT shizhMSFT changed the title Feat: Added local sign/verification for OCI layout directory feat: add local signing/verification for OCI layout directory Mar 14, 2023
@patrickzheng200 patrickzheng200 changed the title feat: add local signing/verification for OCI layout directory feat: add local signing/verification for OCI layout directory[Draft] Mar 15, 2023
@patrickzheng200 patrickzheng200 marked this pull request as draft March 15, 2023 01:09
@Two-Hearts
updated per code review
9e9ccd6 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
update log
28a0169 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
update
9b326f8 
Signed-off-by: Patrick Zheng <[email protected]>
shizhMSFT
shizhMSFT previously approved these changes Mar 31, 2023
View reviewed changes
Copy link
Contributor

@shizhMSFT shizhMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

registry/repository.go Outdated Show resolved Hide resolved
@Two-Hearts
updated per code review
3e3e47d 
Signed-off-by: Patrick Zheng <[email protected]>
shizhMSFT
shizhMSFT previously approved these changes Mar 31, 2023
View reviewed changes
Copy link
Contributor

@shizhMSFT shizhMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@Two-Hearts
updated notation SignOptions
13db114 
Signed-off-by: Patrick Zheng <[email protected]>
shizhMSFT
shizhMSFT reviewed Mar 31, 2023
View reviewed changes
notation.go Outdated Show resolved Hide resolved
notation.go Outdated Show resolved Hide resolved
@Two-Hearts
updated per code review
9063db2 
Signed-off-by: Patrick Zheng <[email protected]>
shizhMSFT
shizhMSFT reviewed Apr 3, 2023
View reviewed changes
notation.go Outdated Show resolved Hide resolved
@Two-Hearts
updated per code review
796ce43 
Signed-off-by: Patrick Zheng <[email protected]>
@Two-Hearts
updated comments
622cc36 
Signed-off-by: Patrick Zheng <[email protected]>
shizhMSFT
shizhMSFT approved these changes Apr 7, 2023
View reviewed changes
Copy link
Contributor

@shizhMSFT shizhMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@yizha1
Copy link
Contributor

yizha1 commented Apr 10, 2023
edited
Loading

@priteshbandi Could you take another pass at this PR?

priteshbandi
priteshbandi reviewed Apr 19, 2023
View reviewed changes
verifier/verifier.go Show resolved Hide resolved
verifier/verifier.go Show resolved Hide resolved
registry/repository.go Show resolved Hide resolved
priteshbandi
priteshbandi approved these changes Apr 19, 2023
View reviewed changes
Copy link
Contributor

@priteshbandi priteshbandi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@patrickzheng200 patrickzheng200 merged commit cd1a135 into notaryproject:main Apr 19, 2023
@patrickzheng200 patrickzheng200 deleted the local-rc4 branch April 19, 2023 05:01
shizhMSFT pushed a commit to notaryproject/notation that referenced this pull request Apr 20, 2023
@Two-Hearts
feat: add local sign/list/verification for OCI layout directory (#595)
17d3525 
This PR adds local sign/list/verification for OCI image layout
directory.
For RC.4:
1. It only supports storing the generated signature into the target OCI
layout directory.
2. It supports listing signatures within the OCI layout directory.
3. It only supports verifying signatures within the target OCI layout
directory.

This PR is based on spec PR:
#601 (Merged).

This PR is dependent on the corresponding notation-go PR:
notaryproject/notation-go#288.
Please review the notation-go PR first.

Resolves #283.

Both remote registry and oci-layout scenario are tested. E2E tests are
also included.

---------

Signed-off-by: Patrick Zheng <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@priteshbandi priteshbandi priteshbandi approved these changes

@shizhMSFT shizhMSFT shizhMSFT approved these changes

@gokarnm gokarnm Awaiting requested review from gokarnm gokarnm is a code owner

@JeyJeyGao JeyJeyGao Awaiting requested review from JeyJeyGao JeyJeyGao is a code owner

@justincormack justincormack Awaiting requested review from justincormack

@NiazFK NiazFK Awaiting requested review from NiazFK NiazFK is a code owner

@rgnote rgnote Awaiting requested review from rgnote rgnote is a code owner

@SteveLasker SteveLasker Awaiting requested review from SteveLasker

@byronchien byronchien Awaiting requested review from byronchien

@kody-kimberl kody-kimberl Awaiting requested review from kody-kimberl

@qweeah qweeah Awaiting requested review from qweeah

Assignees

@patrickzheng200 patrickzheng200

Labels
enhancement New feature or request
Projects
None yet
Milestone
RC-4
Development

Successfully merging this pull request may close these issues.

None yet
9 participants
@patrickzheng200 @codecov-commenter @yizha1 @qweeah @priteshbandi @byronchien @shizhMSFT @kody-kimberl @Two-Hearts