We use cookies to ensure you get the best experience on our website
Startseite Erkunden Hilfe
Registrieren Anmelden
0ct0pu5
/
moby
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: 56da020e6b
Branches Tags
moby
/
vendor
/
github.com
/
docker
/
distribution
/
manifest
/
schema1
/
sign.go

sign.go 1.4 KB
Verlauf Originalformat

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. package schema1
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/x509"
    5. 

  5. 	"encoding/json"
    6. 

  6. 

  7. 	"github.com/docker/libtrust"
    8. 

  8. )
    9. 

  9. 

  10. // Sign signs the manifest with the provided private key, returning a
    11. 

  11. // SignedManifest. This typically won't be used within the registry, except
    12. 

  12. // for testing.
    13. 

  13. func Sign(m *Manifest, pk libtrust.PrivateKey) (*SignedManifest, error) {
    14. 

  14. 	p, err := json.MarshalIndent(m, "", "   ")
    15. 

  15. 	if err != nil {
    16. 

  16. 		return nil, err
    17. 

  17. 	}
    18. 

  18. 

  19. 	js, err := libtrust.NewJSONSignature(p)
    20. 

  20. 	if err != nil {
    21. 

  21. 		return nil, err
    22. 

  22. 	}
    23. 

  23. 

  24. 	if err := js.Sign(pk); err != nil {
    25. 

  25. 		return nil, err
    26. 

  26. 	}
    27. 

  27. 

  28. 	pretty, err := js.PrettySignature("signatures")
    29. 

  29. 	if err != nil {
    30. 

  30. 		return nil, err
    31. 

  31. 	}
    32. 

  32. 

  33. 	return &SignedManifest{
    34. 

  34. 		Manifest:  *m,
    35. 

  35. 		all:       pretty,
    36. 

  36. 		Canonical: p,
    37. 

  37. 	}, nil
    38. 

  38. }
    39. 

  39. 

  40. // SignWithChain signs the manifest with the given private key and x509 chain.
    41. 

  41. // The public key of the first element in the chain must be the public key
    42. 

  42. // corresponding with the sign key.
    43. 

  43. func SignWithChain(m *Manifest, key libtrust.PrivateKey, chain []*x509.Certificate) (*SignedManifest, error) {
    44. 

  44. 	p, err := json.MarshalIndent(m, "", "   ")
    45. 

  45. 	if err != nil {
    46. 

  46. 		return nil, err
    47. 

  47. 	}
    48. 

  48. 

  49. 	js, err := libtrust.NewJSONSignature(p)
    50. 

  50. 	if err != nil {
    51. 

  51. 		return nil, err
    52. 

  52. 	}
    53. 

  53. 

  54. 	if err := js.SignWithChain(key, chain); err != nil {
    55. 

  55. 		return nil, err
    56. 

  56. 	}
    57. 

  57. 

  58. 	pretty, err := js.PrettySignature("signatures")
    59. 

  59. 	if err != nil {
    60. 

  60. 		return nil, err
    61. 

  61. 	}
    62. 

  62. 

  63. 	return &SignedManifest{
    64. 

  64. 		Manifest:  *m,
    65. 

  65. 		all:       pretty,
    66. 

  66. 		Canonical: p,
    67. 

  67. 	}, nil
    68. 

  68. }
    69.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5