cosign

package

v0.4.4 Latest Latest Go to latest Published: Mar 29, 2024 License: Apache-2.0, BSD-3-Clause Imports: 6 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/google/go-tpm-tools

Links

Open Source Insights

Documentation ¶

Overview ¶

Package cosign contains functionalities to interact with signatures generated by cosign. https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md.

Index ¶

Constants
func NewFakeSignature(data string, sigAlg oci.SigningAlgorithm) oci.Signature
type Sig

Constants ¶

View Source

const CosignSigKey = "dev.cosignproject.cosign/signature"

CosignSigKey is the key of the cosign-generated signature embedded in OCI image manifest.

Variables ¶

This section is empty.

Functions ¶

func NewFakeSignature ¶

func NewFakeSignature(data string, sigAlg oci.SigningAlgorithm) oci.Signature

NewFakeSignature constructs a new fake oci.Signature given data and signature algorithm.

Types ¶

type Sig ¶

type Sig struct {
	// Layer represents a layer descriptor for OCI image manifest.
	// This contains the simple signing payload digest and Cosign signature,
	// collected from the OCI image manifest object found using https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md#tag-based-discovery.
	Layer v1.Descriptor
	// Blob represents the opaque data uploaded to OCI registry associated with the layer.
	// This contains the Simple Signing Payload as described in https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md#tag-based-discovery.
	Blob []byte
	// SourceRepo represents the location that stores this signature.
	SourceRepo string
}

Sig implements oci.Signature interface for cosign-generated signatures.

func (Sig) Base64Encoded ¶

func (s Sig) Base64Encoded() (string, error)

Base64Encoded implements oci.Signature interface.

func (Sig) Payload ¶

func (s Sig) Payload() ([]byte, error)

Payload implements oci.Signature interface.

func (Sig) PublicKey ¶

func (s Sig) PublicKey() ([]byte, error)

PublicKey implements oci.Signature interface. Since public key is attached to the `optional` field of payload, we don't actually implement this method. Instead we send payload directly to the Attestation service and let the service parse the payload.

func (Sig) SigningAlgorithm ¶

func (s Sig) SigningAlgorithm() (oci.SigningAlgorithm, error)

SigningAlgorithm implements oci.Signature interface. Since signing algorithm is attached to the `optional` field of payload, we don't actually implement this method. Instead we send payload directly to the Attestation service and let the service parse the payload.

func (Sig) String ¶

func (s Sig) String() string

String returns signature details

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL