v1

package
v0.1.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jan 10, 2023 License: Apache-2.0 Imports: 6 Imported by: 22

Documentation

Index

Constants

This section is empty.

Variables

View Source
var (
	HashAlgorithm_name = map[int32]string{
		0: "HASH_ALGORITHM_UNSPECIFIED",
		1: "SHA2_256",
	}
	HashAlgorithm_value = map[string]int32{
		"HASH_ALGORITHM_UNSPECIFIED": 0,
		"SHA2_256":                   1,
	}
)

Enum value maps for HashAlgorithm.

View Source
var (
	PublicKeyDetails_name = map[int32]string{
		0: "PUBLIC_KEY_DETAILS_UNSPECIFIED",
		1: "PKCS1_RSA_PKCS1V5",
		2: "PKCS1_RSA_PSS",
		3: "PKIX_RSA_PKCS1V5",
		4: "PKIX_RSA_PSS",
		5: "PKIX_ECDSA_P256_SHA_256",
		6: "PKIX_ECDSA_P256_HMAC_SHA_256",
		7: "PKIX_ED25519",
	}
	PublicKeyDetails_value = map[string]int32{
		"PUBLIC_KEY_DETAILS_UNSPECIFIED": 0,
		"PKCS1_RSA_PKCS1V5":              1,
		"PKCS1_RSA_PSS":                  2,
		"PKIX_RSA_PKCS1V5":               3,
		"PKIX_RSA_PSS":                   4,
		"PKIX_ECDSA_P256_SHA_256":        5,
		"PKIX_ECDSA_P256_HMAC_SHA_256":   6,
		"PKIX_ED25519":                   7,
	}
)

Enum value maps for PublicKeyDetails.

View Source
var (
	SubjectAlternativeNameType_name = map[int32]string{
		0: "SUBJECT_ALTERNATIVE_NAME_TYPE_UNSPECIFIED",
		1: "EMAIL",
		2: "URI",
		3: "OTHER_NAME",
	}
	SubjectAlternativeNameType_value = map[string]int32{
		"SUBJECT_ALTERNATIVE_NAME_TYPE_UNSPECIFIED": 0,
		"EMAIL":      1,
		"URI":        2,
		"OTHER_NAME": 3,
	}
)

Enum value maps for SubjectAlternativeNameType.

View Source
var File_sigstore_common_proto protoreflect.FileDescriptor

Functions

This section is empty.

Types

type DistinguishedName

type DistinguishedName struct {
	Organization string `protobuf:"bytes,1,opt,name=organization,proto3" json:"organization,omitempty"`
	CommonName   string `protobuf:"bytes,2,opt,name=common_name,json=commonName,proto3" json:"common_name,omitempty"`
	// contains filtered or unexported fields
}

func (*DistinguishedName) Descriptor deprecated

func (*DistinguishedName) Descriptor() ([]byte, []int)

Deprecated: Use DistinguishedName.ProtoReflect.Descriptor instead.

func (*DistinguishedName) GetCommonName

func (x *DistinguishedName) GetCommonName() string

func (*DistinguishedName) GetOrganization

func (x *DistinguishedName) GetOrganization() string

func (*DistinguishedName) ProtoMessage

func (*DistinguishedName) ProtoMessage()

func (*DistinguishedName) ProtoReflect

func (x *DistinguishedName) ProtoReflect() protoreflect.Message

func (*DistinguishedName) Reset

func (x *DistinguishedName) Reset()

func (*DistinguishedName) String

func (x *DistinguishedName) String() string

type HashAlgorithm

type HashAlgorithm int32

Only a subset of the secure hash standard algorithms are supported. See <https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf> for more details. UNSPECIFIED SHOULD not be used, primary reason for inclusion is to force any proto JSON serialization to emit the used hash algorithm, as default option is to *omit* the default value of an enum (which is the first value, represented by '0'.

const (
	HashAlgorithm_HASH_ALGORITHM_UNSPECIFIED HashAlgorithm = 0
	HashAlgorithm_SHA2_256                   HashAlgorithm = 1
)

func (HashAlgorithm) Descriptor

func (HashAlgorithm) Enum

func (x HashAlgorithm) Enum() *HashAlgorithm

func (HashAlgorithm) EnumDescriptor deprecated

func (HashAlgorithm) EnumDescriptor() ([]byte, []int)

Deprecated: Use HashAlgorithm.Descriptor instead.

func (HashAlgorithm) Number

func (HashAlgorithm) String

func (x HashAlgorithm) String() string

func (HashAlgorithm) Type

type HashOutput

type HashOutput struct {
	Algorithm HashAlgorithm `protobuf:"varint,1,opt,name=algorithm,proto3,enum=dev.sigstore.common.v1.HashAlgorithm" json:"algorithm,omitempty"`
	// This is the raw octets of the message digest as computed by
	// the hash algorithm.
	Digest []byte `protobuf:"bytes,2,opt,name=digest,proto3" json:"digest,omitempty"`
	// contains filtered or unexported fields
}

HashOutput captures a digest of a 'message' (generic octet sequence) and the corresponding hash algorithm used.

func (*HashOutput) Descriptor deprecated

func (*HashOutput) Descriptor() ([]byte, []int)

Deprecated: Use HashOutput.ProtoReflect.Descriptor instead.

func (*HashOutput) GetAlgorithm

func (x *HashOutput) GetAlgorithm() HashAlgorithm

func (*HashOutput) GetDigest

func (x *HashOutput) GetDigest() []byte

func (*HashOutput) ProtoMessage

func (*HashOutput) ProtoMessage()

func (*HashOutput) ProtoReflect

func (x *HashOutput) ProtoReflect() protoreflect.Message

func (*HashOutput) Reset

func (x *HashOutput) Reset()

func (*HashOutput) String

func (x *HashOutput) String() string

type LogId

type LogId struct {

	// The unique id of the log, represented as the SHA-256 hash
	// of the log's public key, computed over the DER encoding.
	// <https://www.rfc-editor.org/rfc/rfc6962#section-3.2>
	KeyId []byte `protobuf:"bytes,1,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"`
	// contains filtered or unexported fields
}

LogId captures the identity of a transparency log.

func (*LogId) Descriptor deprecated

func (*LogId) Descriptor() ([]byte, []int)

Deprecated: Use LogId.ProtoReflect.Descriptor instead.

func (*LogId) GetKeyId

func (x *LogId) GetKeyId() []byte

func (*LogId) ProtoMessage

func (*LogId) ProtoMessage()

func (*LogId) ProtoReflect

func (x *LogId) ProtoReflect() protoreflect.Message

func (*LogId) Reset

func (x *LogId) Reset()

func (*LogId) String

func (x *LogId) String() string

type MessageSignature

type MessageSignature struct {

	// Message digest can be used to identify the artifact.
	MessageDigest *HashOutput `protobuf:"bytes,1,opt,name=message_digest,json=messageDigest,proto3" json:"message_digest,omitempty"`
	// The raw bytes as returned from the signature algorithm.
	// The signature algorithm (and so the format of the signature bytes)
	// are determined by the contents of the 'verification_material',
	// either a key-pair or a certificate. If using a certificate, the
	// certificate contains the required information on the signature
	// algorithm.
	// When using a key pair, the algorithm MUST be part of the public
	// key, which MUST be communicated out-of-band.
	Signature []byte `protobuf:"bytes,2,opt,name=signature,proto3" json:"signature,omitempty"`
	// contains filtered or unexported fields
}

MessageSignature stores the computed signature over a message.

func (*MessageSignature) Descriptor deprecated

func (*MessageSignature) Descriptor() ([]byte, []int)

Deprecated: Use MessageSignature.ProtoReflect.Descriptor instead.

func (*MessageSignature) GetMessageDigest

func (x *MessageSignature) GetMessageDigest() *HashOutput

func (*MessageSignature) GetSignature

func (x *MessageSignature) GetSignature() []byte

func (*MessageSignature) ProtoMessage

func (*MessageSignature) ProtoMessage()

func (*MessageSignature) ProtoReflect

func (x *MessageSignature) ProtoReflect() protoreflect.Message

func (*MessageSignature) Reset

func (x *MessageSignature) Reset()

func (*MessageSignature) String

func (x *MessageSignature) String() string

type ObjectIdentifier

type ObjectIdentifier struct {
	Id []int32 `protobuf:"varint,1,rep,packed,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

An ASN.1 OBJECT IDENTIFIER

func (*ObjectIdentifier) Descriptor deprecated

func (*ObjectIdentifier) Descriptor() ([]byte, []int)

Deprecated: Use ObjectIdentifier.ProtoReflect.Descriptor instead.

func (*ObjectIdentifier) GetId

func (x *ObjectIdentifier) GetId() []int32

func (*ObjectIdentifier) ProtoMessage

func (*ObjectIdentifier) ProtoMessage()

func (*ObjectIdentifier) ProtoReflect

func (x *ObjectIdentifier) ProtoReflect() protoreflect.Message

func (*ObjectIdentifier) Reset

func (x *ObjectIdentifier) Reset()

func (*ObjectIdentifier) String

func (x *ObjectIdentifier) String() string

type ObjectIdentifierValuePair

type ObjectIdentifierValuePair struct {
	Oid   *ObjectIdentifier `protobuf:"bytes,1,opt,name=oid,proto3" json:"oid,omitempty"`
	Value []byte            `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
	// contains filtered or unexported fields
}

An OID and the corresponding (byte) value.

func (*ObjectIdentifierValuePair) Descriptor deprecated

func (*ObjectIdentifierValuePair) Descriptor() ([]byte, []int)

Deprecated: Use ObjectIdentifierValuePair.ProtoReflect.Descriptor instead.

func (*ObjectIdentifierValuePair) GetOid

func (*ObjectIdentifierValuePair) GetValue

func (x *ObjectIdentifierValuePair) GetValue() []byte

func (*ObjectIdentifierValuePair) ProtoMessage

func (*ObjectIdentifierValuePair) ProtoMessage()

func (*ObjectIdentifierValuePair) ProtoReflect

func (*ObjectIdentifierValuePair) Reset

func (x *ObjectIdentifierValuePair) Reset()

func (*ObjectIdentifierValuePair) String

func (x *ObjectIdentifierValuePair) String() string

type PublicKey

type PublicKey struct {

	// DER-encoded public key, encoding method is specified by the
	// key_details attribute.
	RawBytes []byte `protobuf:"bytes,1,opt,name=raw_bytes,json=rawBytes,proto3,oneof" json:"raw_bytes,omitempty"`
	// Key encoding and signature algorithm to use for this key.
	KeyDetails PublicKeyDetails `` /* 137-byte string literal not displayed */
	// Optional validity period for this key.
	ValidFor *TimeRange `protobuf:"bytes,3,opt,name=valid_for,json=validFor,proto3,oneof" json:"valid_for,omitempty"`
	// contains filtered or unexported fields
}

func (*PublicKey) Descriptor deprecated

func (*PublicKey) Descriptor() ([]byte, []int)

Deprecated: Use PublicKey.ProtoReflect.Descriptor instead.

func (*PublicKey) GetKeyDetails

func (x *PublicKey) GetKeyDetails() PublicKeyDetails

func (*PublicKey) GetRawBytes

func (x *PublicKey) GetRawBytes() []byte

func (*PublicKey) GetValidFor

func (x *PublicKey) GetValidFor() *TimeRange

func (*PublicKey) ProtoMessage

func (*PublicKey) ProtoMessage()

func (*PublicKey) ProtoReflect

func (x *PublicKey) ProtoReflect() protoreflect.Message

func (*PublicKey) Reset

func (x *PublicKey) Reset()

func (*PublicKey) String

func (x *PublicKey) String() string

type PublicKeyDetails

type PublicKeyDetails int32

Details of a specific public key, capturing the the key encoding method, and signature algorithm. To avoid the possibility of contradicting formats such as PKCS1 with ED25519 the valid permutations are listed as a linear set instead of a cartesian set (i.e one combined variable instead of two, one for encoding and one for the signature algorithm).

const (
	PublicKeyDetails_PUBLIC_KEY_DETAILS_UNSPECIFIED PublicKeyDetails = 0
	// RSA
	PublicKeyDetails_PKCS1_RSA_PKCS1V5 PublicKeyDetails = 1 // See RFC8017
	PublicKeyDetails_PKCS1_RSA_PSS     PublicKeyDetails = 2 // See RFC8017
	PublicKeyDetails_PKIX_RSA_PKCS1V5  PublicKeyDetails = 3
	PublicKeyDetails_PKIX_RSA_PSS      PublicKeyDetails = 4
	// ECDSA
	PublicKeyDetails_PKIX_ECDSA_P256_SHA_256      PublicKeyDetails = 5 // See NIST FIPS 186-4
	PublicKeyDetails_PKIX_ECDSA_P256_HMAC_SHA_256 PublicKeyDetails = 6 // See RFC6979
	// Ed 25519
	PublicKeyDetails_PKIX_ED25519 PublicKeyDetails = 7 // See RFC8032
)

func (PublicKeyDetails) Descriptor

func (PublicKeyDetails) Enum

func (PublicKeyDetails) EnumDescriptor deprecated

func (PublicKeyDetails) EnumDescriptor() ([]byte, []int)

Deprecated: Use PublicKeyDetails.Descriptor instead.

func (PublicKeyDetails) Number

func (PublicKeyDetails) String

func (x PublicKeyDetails) String() string

func (PublicKeyDetails) Type

type PublicKeyIdentifier

type PublicKeyIdentifier struct {

	// Optional unauthenticated hint on which key to use.
	// The format of the hint must be agreed upon out of band by the
	// signer and the verifiers, and so is not subject to this
	// specification.
	// Example use-case is to specify the public key to use, from a
	// trusted key-ring.
	// Implementors are RECOMMENDED to derive the value from the public
	// key as described in RFC 6962.
	// See: <https://www.rfc-editor.org/rfc/rfc6962#section-3.2>
	Hint string `protobuf:"bytes,1,opt,name=hint,proto3" json:"hint,omitempty"`
	// contains filtered or unexported fields
}

PublicKeyIdentifier can be used to identify an (out of band) delivered key, to verify a signature.

func (*PublicKeyIdentifier) Descriptor deprecated

func (*PublicKeyIdentifier) Descriptor() ([]byte, []int)

Deprecated: Use PublicKeyIdentifier.ProtoReflect.Descriptor instead.

func (*PublicKeyIdentifier) GetHint

func (x *PublicKeyIdentifier) GetHint() string

func (*PublicKeyIdentifier) ProtoMessage

func (*PublicKeyIdentifier) ProtoMessage()

func (*PublicKeyIdentifier) ProtoReflect

func (x *PublicKeyIdentifier) ProtoReflect() protoreflect.Message

func (*PublicKeyIdentifier) Reset

func (x *PublicKeyIdentifier) Reset()

func (*PublicKeyIdentifier) String

func (x *PublicKeyIdentifier) String() string

type RFC3161SignedTimestamp

type RFC3161SignedTimestamp struct {

	// Signed timestamp is the DER encoded TimeStampResponse.
	// See https://www.rfc-editor.org/rfc/rfc3161.html#section-2.4.2
	SignedTimestamp []byte `protobuf:"bytes,1,opt,name=signed_timestamp,json=signedTimestamp,proto3" json:"signed_timestamp,omitempty"`
	// contains filtered or unexported fields
}

This message holds a RFC 3161 timestamp.

func (*RFC3161SignedTimestamp) Descriptor deprecated

func (*RFC3161SignedTimestamp) Descriptor() ([]byte, []int)

Deprecated: Use RFC3161SignedTimestamp.ProtoReflect.Descriptor instead.

func (*RFC3161SignedTimestamp) GetSignedTimestamp

func (x *RFC3161SignedTimestamp) GetSignedTimestamp() []byte

func (*RFC3161SignedTimestamp) ProtoMessage

func (*RFC3161SignedTimestamp) ProtoMessage()

func (*RFC3161SignedTimestamp) ProtoReflect

func (x *RFC3161SignedTimestamp) ProtoReflect() protoreflect.Message

func (*RFC3161SignedTimestamp) Reset

func (x *RFC3161SignedTimestamp) Reset()

func (*RFC3161SignedTimestamp) String

func (x *RFC3161SignedTimestamp) String() string

type SubjectAlternativeName

type SubjectAlternativeName struct {
	Type SubjectAlternativeNameType `protobuf:"varint,1,opt,name=type,proto3,enum=dev.sigstore.common.v1.SubjectAlternativeNameType" json:"type,omitempty"`
	// Types that are assignable to Identity:
	//	*SubjectAlternativeName_Regexp
	//	*SubjectAlternativeName_Value
	Identity isSubjectAlternativeName_Identity `protobuf_oneof:"identity"`
	// contains filtered or unexported fields
}

func (*SubjectAlternativeName) Descriptor deprecated

func (*SubjectAlternativeName) Descriptor() ([]byte, []int)

Deprecated: Use SubjectAlternativeName.ProtoReflect.Descriptor instead.

func (*SubjectAlternativeName) GetIdentity

func (m *SubjectAlternativeName) GetIdentity() isSubjectAlternativeName_Identity

func (*SubjectAlternativeName) GetRegexp

func (x *SubjectAlternativeName) GetRegexp() string

func (*SubjectAlternativeName) GetType

func (*SubjectAlternativeName) GetValue

func (x *SubjectAlternativeName) GetValue() string

func (*SubjectAlternativeName) ProtoMessage

func (*SubjectAlternativeName) ProtoMessage()

func (*SubjectAlternativeName) ProtoReflect

func (x *SubjectAlternativeName) ProtoReflect() protoreflect.Message

func (*SubjectAlternativeName) Reset

func (x *SubjectAlternativeName) Reset()

func (*SubjectAlternativeName) String

func (x *SubjectAlternativeName) String() string

type SubjectAlternativeNameType

type SubjectAlternativeNameType int32
const (
	SubjectAlternativeNameType_SUBJECT_ALTERNATIVE_NAME_TYPE_UNSPECIFIED SubjectAlternativeNameType = 0
	SubjectAlternativeNameType_EMAIL                                     SubjectAlternativeNameType = 1
	SubjectAlternativeNameType_URI                                       SubjectAlternativeNameType = 2
	// OID 1.3.6.1.4.1.57264.1.7
	// See https://github.com/sigstore/fulcio/blob/main/docs/oid-info.md#1361415726417--othername-san
	// for more details.
	SubjectAlternativeNameType_OTHER_NAME SubjectAlternativeNameType = 3
)

func (SubjectAlternativeNameType) Descriptor

func (SubjectAlternativeNameType) Enum

func (SubjectAlternativeNameType) EnumDescriptor deprecated

func (SubjectAlternativeNameType) EnumDescriptor() ([]byte, []int)

Deprecated: Use SubjectAlternativeNameType.Descriptor instead.

func (SubjectAlternativeNameType) Number

func (SubjectAlternativeNameType) String

func (SubjectAlternativeNameType) Type

type SubjectAlternativeName_Regexp

type SubjectAlternativeName_Regexp struct {
	// A regular expression describing the expected value for
	// the SAN.
	Regexp string `protobuf:"bytes,2,opt,name=regexp,proto3,oneof"`
}

type SubjectAlternativeName_Value

type SubjectAlternativeName_Value struct {
	// The exact value to match against.
	Value string `protobuf:"bytes,3,opt,name=value,proto3,oneof"`
}

type TimeRange

type TimeRange struct {
	Start *timestamppb.Timestamp `protobuf:"bytes,1,opt,name=start,proto3" json:"start,omitempty"`
	End   *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=end,proto3,oneof" json:"end,omitempty"`
	// contains filtered or unexported fields
}

The time range is half-open and does not include the end timestamp, i.e [start, end). End is optional to be able to capture a period that has started but has no known end.

func (*TimeRange) Descriptor deprecated

func (*TimeRange) Descriptor() ([]byte, []int)

Deprecated: Use TimeRange.ProtoReflect.Descriptor instead.

func (*TimeRange) GetEnd

func (x *TimeRange) GetEnd() *timestamppb.Timestamp

func (*TimeRange) GetStart

func (x *TimeRange) GetStart() *timestamppb.Timestamp

func (*TimeRange) ProtoMessage

func (*TimeRange) ProtoMessage()

func (*TimeRange) ProtoReflect

func (x *TimeRange) ProtoReflect() protoreflect.Message

func (*TimeRange) Reset

func (x *TimeRange) Reset()

func (*TimeRange) String

func (x *TimeRange) String() string

type X509Certificate

type X509Certificate struct {

	// DER-encoded X.509 certificate.
	RawBytes []byte `protobuf:"bytes,1,opt,name=raw_bytes,json=rawBytes,proto3" json:"raw_bytes,omitempty"`
	// contains filtered or unexported fields
}

func (*X509Certificate) Descriptor deprecated

func (*X509Certificate) Descriptor() ([]byte, []int)

Deprecated: Use X509Certificate.ProtoReflect.Descriptor instead.

func (*X509Certificate) GetRawBytes

func (x *X509Certificate) GetRawBytes() []byte

func (*X509Certificate) ProtoMessage

func (*X509Certificate) ProtoMessage()

func (*X509Certificate) ProtoReflect

func (x *X509Certificate) ProtoReflect() protoreflect.Message

func (*X509Certificate) Reset

func (x *X509Certificate) Reset()

func (*X509Certificate) String

func (x *X509Certificate) String() string

type X509CertificateChain

type X509CertificateChain struct {

	// The chain of certificates, with indices 0 to n.
	// The first certificate in the array must be the leaf
	// certificate used for signing. Any intermediate certificates
	// must be stored as offset 1 to n-1, and the root certificate at
	// position n.
	Certificates []*X509Certificate `protobuf:"bytes,1,rep,name=certificates,proto3" json:"certificates,omitempty"`
	// contains filtered or unexported fields
}

A chain of X.509 certificates.

func (*X509CertificateChain) Descriptor deprecated

func (*X509CertificateChain) Descriptor() ([]byte, []int)

Deprecated: Use X509CertificateChain.ProtoReflect.Descriptor instead.

func (*X509CertificateChain) GetCertificates

func (x *X509CertificateChain) GetCertificates() []*X509Certificate

func (*X509CertificateChain) ProtoMessage

func (*X509CertificateChain) ProtoMessage()

func (*X509CertificateChain) ProtoReflect

func (x *X509CertificateChain) ProtoReflect() protoreflect.Message

func (*X509CertificateChain) Reset

func (x *X509CertificateChain) Reset()

func (*X509CertificateChain) String

func (x *X509CertificateChain) String() string

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL