Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: allow ManualTrustRoot to have multiple rekor keys #365

Merged
merged 1 commit into from
May 24, 2024
Merged

fix: allow ManualTrustRoot to have multiple rekor keys #365

merged 1 commit into from
May 24, 2024

Conversation

flavio
Copy link
Member

@flavio flavio commented May 23, 2024

ManualTrustRoot implements the TrustRoot trait, which requires the implemented to have multiple rekor keys. The ManualTrustRoot struct has now been updated to handle that, prior to that only one Rekor key was stored inside of a ManualTrustRoot instance.

@flavio flavio requested a review from Xynnn007 May 23, 2024 16:24
Xynnn007
Xynnn007 reviewed May 24, 2024
View reviewed changes
Copy link
Member

@Xynnn007 Xynnn007 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @flavio for this! There are some naive points unclear to me. Please correct me if I ignored anything

src/trust/mod.rs Outdated Show resolved Hide resolved
examples/cosign/verify/main.rs Outdated Show resolved Hide resolved
@flavio flavio force-pushed the manual-trust-root-can-have-multiple-rekor-keys branch from 86aedb5 to 9fecd7c Compare May 24, 2024 08:06
@flavio
Copy link
Member Author

flavio commented May 24, 2024

@Xynnn007 this is ready for another round of review

@flavio
fix: allow ManualTrustRoot to have multiple rekor keys
1686be8 
`ManualTrustRoot` implements the `TrustRoot` trait, which requires the
implemented to have multiple rekor keys. The `ManualTrustRoot` struct
has now been updated to handle that, prior to that only one Rekor key
was stored inside of a `ManualTrustRoot` instance.

Signed-off-by: Flavio Castelli <fcastelli@suse.com>
@flavio flavio force-pushed the manual-trust-root-can-have-multiple-rekor-keys branch from 9fecd7c to 1686be8 Compare May 24, 2024 08:09
Xynnn007
Xynnn007 approved these changes May 24, 2024
View reviewed changes
Copy link
Member

@Xynnn007 Xynnn007 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm. Thanks!

@flavio flavio merged commit 4bd0baf into sigstore:main May 24, 2024
7 checks passed
@flavio flavio deleted the manual-trust-root-can-have-multiple-rekor-keys branch May 24, 2024 09:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Xynnn007 Xynnn007 Xynnn007 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@flavio @Xynnn007