source-controller/internal
Hidde Beydals 0ec49784b5
oci: sort remaining quirks in cosign verify logic
This commit properly sets `IgnoreTlog` to `true` when a public key is
provided to check the signature against, which matches the (silent)
default behavior from cosign v1.

However, during this exercise it has become apparant that this
assumption isn't necessarily true. As you can theoretically have a
custom key and a tlog entry.

Given this, we should inventarise the possible configuration options
and the potential value they have to users (e.g. defining a custom
Rekor URL seems to be valuable as well), and extend our API to
facilitate these needs.

In addition to the above, the CTLog public keys are now properly
retrieved to avoid a `none of the CTFE keys have been found` error.

Signed-off-by: Hidde Beydals <hidde@hhh.computer>
2023-05-22 11:08:16 +02:00
..
cache Build with Go 1.19 2022-09-28 15:35:26 +03:00
controller oci: sort remaining quirks in cosign verify logic 2023-05-22 11:08:16 +02:00
digest digest: register SHA1 digest algorithm 2023-02-14 12:48:36 +01:00
error Introduce Generic error and error Config 2022-05-20 19:52:03 +05:30
features Disable caching of secrets and configmaps 2023-01-27 11:38:56 +00:00
fs test: use `T.TempDir` to create temporary test directory 2022-04-29 23:01:39 +08:00
helm api: Remove deprecated `Checksum` from `Artifact` 2023-03-24 11:56:12 +01:00
index controllers: use digest for Bucket revision 2023-02-14 12:48:36 +01:00
mock mock/gcs: strip /storage/v1 URI element 2022-03-16 11:16:47 +01:00
object Promote GitRepository API to v1 2023-03-23 23:17:23 +02:00
oci oci: sort remaining quirks in cosign verify logic 2023-05-22 11:08:16 +02:00
predicates [RFC 0002] Flux OCI support for Helm (#690) 2022-05-19 14:50:16 +02:00
reconcile Promote GitRepository API to v1 2023-03-23 23:17:23 +02:00
transport internal/helm/getter: remove transport reuse test 2022-06-14 09:25:52 +01:00
util Refactor internal OCI package 2022-09-20 18:34:02 +03:00