moby/graph/fixtures/validate_manifest
Aaron Lehmann 011bfd666e Unmarshal signed payload when pulling by digest
Add a unit test for validateManifest which ensures extra data can't be
injected by adding data to the JSON object outside the payload area.

This also removes validation of legacy signatures at pull time. This
starts the path of deprecating legacy signatures, whose presence in the
very JSON document they attempt to sign is problematic.  These
signatures were only checked for official images, and since they only
caused a weakly-worded message to be printed, removing the verification
should not cause impact.

Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com>
2015-10-12 10:51:28 -07:00
..
bad_manifest Unmarshal signed payload when pulling by digest 2015-10-12 10:51:28 -07:00
extra_data_manifest Unmarshal signed payload when pulling by digest 2015-10-12 10:51:28 -07:00
good_manifest Unmarshal signed payload when pulling by digest 2015-10-12 10:51:28 -07:00
no_signature_manifest Unmarshal signed payload when pulling by digest 2015-10-12 10:51:28 -07:00