podman

Commit Graph

Author	SHA1	Message	Date
Miloslav Trmač	ff3f574fc0	Add support for sigstoreSigned in (podman image trust set) NOTE: This does not edit the use-sigstore-attachments value in registries.d, similarly to how (podman image trust set) didn't set the lookaside paths for simple signing. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-08-25 01:50:43 +02:00
Miloslav Trmač	e2d1bdd1d8	Improve validation of data in ImageEngine.SetTrust - Also reject public keys with types that don't use them - Reject unknown trust types - And add unit tests Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-08-25 01:50:43 +02:00
Miloslav Trmač	cbdbb025a3	Move most of imageEngine.SetTrust to pkg/trust.AddPolicyEntries This will allow us to write unit tests without setting up the complete Podman runtime (and without the Linux dependency). Also, actually add a basic smoke test of the core functionality. Should not change behavior. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-08-25 01:50:42 +02:00

Author

SHA1

Message

Date

Miloslav Trmač

ff3f574fc0

Add support for sigstoreSigned in (podman image trust set)

NOTE: This does not edit the use-sigstore-attachments value
in registries.d, similarly to how (podman image trust set) didn't
set the lookaside paths for simple signing.

Signed-off-by: Miloslav Trmač <mitr@redhat.com>

2022-08-25 01:50:43 +02:00

Miloslav Trmač

e2d1bdd1d8

Improve validation of data in ImageEngine.SetTrust

- Also reject public keys with types that don't use them
- Reject unknown trust types
- And add unit tests

Signed-off-by: Miloslav Trmač <mitr@redhat.com>

2022-08-25 01:50:43 +02:00

Miloslav Trmač

cbdbb025a3

Move most of imageEngine.SetTrust to pkg/trust.AddPolicyEntries

This will allow us to write unit tests without setting up the complete Podman runtime
(and without the Linux dependency).

Also, actually add a basic smoke test of the core functionality.

Should not change behavior.

Signed-off-by: Miloslav Trmač <mitr@redhat.com>

2022-08-25 01:50:42 +02:00

3 Commits