Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove opencontainer dependency for timestamping code #11

Merged
merged 4 commits into from
Jun 29, 2022
Merged

Remove opencontainer dependency for timestamping code #11

merged 4 commits into from
Jun 29, 2022

Conversation

priteshbandi
Copy link
Contributor

  • timestamping shouldn't depend on opencontainers.
  • Also, rephrased some of the error message for certificate chain validation.

Pritesh Bandi added 2 commits June 21, 2022 10:55
Fix errors in cert validation
e5b9e13 
Signed-off-by: Pritesh Bandi <pritesb@amazon.com>
Remove opencontainer dependency on timestamping code
2beff36 
Signed-off-by: Pritesh Bandi <pritesb@amazon.com>
rgnote
rgnote approved these changes Jun 23, 2022
View reviewed changes
Copy link
Contributor

@rgnote rgnote left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@gokarnm gokarnm requested a review from a team June 24, 2022 23:25
gokarnm
gokarnm requested changes Jun 24, 2022
View reviewed changes
timestamp/request.go Outdated Show resolved Hide resolved
timestamp/http_test.go Outdated Show resolved Hide resolved
timestamp/request.go Outdated Show resolved Hide resolved
timestamp/request.go Show resolved Hide resolved
shizhMSFT
shizhMSFT reviewed Jun 27, 2022
View reviewed changes
timestamp/errors.go
Comment on lines +3 to +4
// MalformedRequestError is used when timestamping request is malformed.
type MalformedRequestError struct {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It is better to name it ErrorMalformedRequest. It's a convention to put Error as a prefix.

timestamp/request.go Outdated Show resolved Hide resolved
timestamp/token.go Outdated Show resolved Hide resolved
timestamp/token.go Outdated Show resolved Hide resolved
timestamp/request.go Outdated Show resolved Hide resolved
somefixups
185b947 
Signed-off-by: Pritesh Bandi <pritesb@amazon.com>
shizhMSFT
shizhMSFT reviewed Jun 29, 2022
View reviewed changes
timestamp/request.go Outdated
return NewRequest(digest.FromBytes(content))
}
// NewRequestWithContent creates a request based on the given data and hash algorithm.
func NewRequestWithContent(content []byte, alg crypto.Hash) (*Request, error) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit:

Suggested change
func NewRequestWithContent(content []byte, alg crypto.Hash) (*Request, error) {
func NewRequestFromContent(content []byte, alg crypto.Hash) (*Request, error) {

timestamp/token.go Outdated
// Verify verifies the message against the timestamp token information.
func (tst *TSTInfo) Verify(message []byte) error {
// VerifyWithContent verifies the message against the timestamp token information.
func (tst *TSTInfo) VerifyWithContent(message []byte) error {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit:

Suggested change
func (tst *TSTInfo) VerifyWithContent(message []byte) error {
func (tst *TSTInfo) VerifyContent(message []byte) error {

timestamp/request.go Outdated
Comment on lines 103 to 120
func validate(digest []byte, alg crypto.Hash) error {
l := len(digest)
var validContent bool
switch alg {
case crypto.SHA256:
validContent = l == crypto.SHA256.Size()
case crypto.SHA384:
validContent = l == crypto.SHA384.Size()
case crypto.SHA512:
validContent = l == crypto.SHA512.Size()
default:
return MalformedRequestError{msg: fmt.Sprintf("unsupported hashing algorithm: %s", alg)}
}
if !validContent {
return MalformedRequestError{msg: fmt.Sprintf("digest is of incorrect size: %d", l)}
}
return nil
}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
func validate(digest []byte, alg crypto.Hash) error {
l := len(digest)
var validContent bool
switch alg {
case crypto.SHA256:
validContent = l == crypto.SHA256.Size()
case crypto.SHA384:
validContent = l == crypto.SHA384.Size()
case crypto.SHA512:
validContent = l == crypto.SHA512.Size()
default:
return MalformedRequestError{msg: fmt.Sprintf("unsupported hashing algorithm: %s", alg)}
}
if !validContent {
return MalformedRequestError{msg: fmt.Sprintf("digest is of incorrect size: %d", l)}
}
return nil
}
func validate(digest []byte, alg crypto.Hash) error {
switch alg {
case crypto.SHA256, crypto.SHA384, crypto.SHA512:
// no-op
default:
return MalformedRequestError{msg: fmt.Sprintf("unsupported hashing algorithm: %s", alg)}
}
if len(digest) != alg.Size() {
return MalformedRequestError{msg: fmt.Sprintf("digest is of incorrect size: %d", l)}
}
return nil
}

somemorefixups
ff1f31f 
Signed-off-by: Pritesh Bandi <pritesb@amazon.com>
shizhMSFT
shizhMSFT approved these changes Jun 29, 2022
View reviewed changes
Copy link
Contributor

@shizhMSFT shizhMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@gokarnm
Copy link

gokarnm commented Jun 29, 2022

LGTM!

@gokarnm gokarnm merged commit e32e65c into notaryproject:main Jun 29, 2022
@priteshbandi priteshbandi deleted the e2e branch July 12, 2022 22:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gokarnm gokarnm gokarnm approved these changes

@rgnote rgnote rgnote approved these changes

@jondonas jondonas jondonas approved these changes

@shizhMSFT shizhMSFT shizhMSFT approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@priteshbandi @gokarnm @rgnote @jondonas @shizhMSFT