-
Notifications
You must be signed in to change notification settings - Fork 91
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bring KBS Resource URI into Image-rs #119
Commits on Mar 8, 2023
-
refactor: use ref instead of clone
This commit refactors some of the functions of sample signing module. Mainly convert clones into references, which helps to avoid extra memory copies when executing Signed-off-by: Xynnn007 <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for a95c2b6 - Browse repository at this point
Copy the full SHA a95c2b6View commit details
Commits on Mar 10, 2023
-
feat: add support for KBS Resource URI
This commit brings in KBS Resource URI support. All the functions related to read a file from given uri has been brought to module `resource`. Now different resources can be fetched using the overall api resource::get_resource() This Api now support two basic protocol: - file:// read file from local filesystem - kbs:// read file from KBS This commit also fixes features of `keywrap-grpc`, `keywrap-ttrpc` and `keywrap-native` to let them to be allowed to exist at the same time. Signed-off-by: Xynnn007 <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 0ffb15c - Browse repository at this point
Copy the full SHA 0ffb15cView commit details -
Signature: apply KBS URI on signature module
This commit bring out the sigstore configuration file into ImageClient's config to specify which sigstore configuration file for simple signing will be used. Also, some refactoring is applied on the simple signing related codes, including: - Now when merging two sigstore configs, if the contents are duplicated but not conflict, no error will be raised Besides, `KeyPath` field in both cosign and simple signing will use either kbs resource uri or local filesystem path from now on. If a local fs path is used, a absolute path is recommended Signed-off-by: Xynnn007 <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for bf963d2 - Browse repository at this point
Copy the full SHA bf963d2View commit details -
test: integration test update for resource uri
Credential in integration test now is specified by a kbs resource uri (kbs resource uri in `get_resource` api test) Image decryption key in integration is specified by a kbs resource uri in image's AnnotationPacket (kbs resource uri in `unwrap_key` api test) Signed-off-by: Xynnn007 <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for a59d9e4 - Browse repository at this point
Copy the full SHA a59d9e4View commit details -
docs: update docs for integration test
Signed-off-by: Xynnn007 <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 6157cae - Browse repository at this point
Copy the full SHA 6157caeView commit details -
Configuration menu - View commit details
-
Copy full SHA for d579c93 - Browse repository at this point
Copy the full SHA d579c93View commit details -
fix: wrong init order for ImageConfig test
The env should be removed first and then the config be inited, or when the env CC_IMAGE_WORK_DIR is set, the first assert_eq will fail Signed-off-by: Xynnn007 <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for d451f17 - Browse repository at this point
Copy the full SHA d451f17View commit details -
dep: update aa and ocicrypt-rs rev
related rev brings kbs resource uri scheme Signed-off-by: Xynnn007 <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 2597704 - Browse repository at this point
Copy the full SHA 2597704View commit details