centersl/docker-docs
1
0
Fork 0
mirror of https://github.com/docker/docs.git synced 2026-03-31 00:08:55 +07:00
Code Issues Packages Projects Releases Wiki Activity
1,696 Commits 54 Branches 28 Tags
cb080ede060e771ec98ca30dfd12397703c481dd
Commit Graph

34 Commits

Author SHA1 Message Date
Ying Li
7404f4ff55 Embed SignedCommon in Root, Snapshot, and Timestamp, as it's already 
embedded in Targets.  This way we can easily get a SignedCommon object
out after calling RootFromSigned, etc.

Signed-off-by: Ying Li <ying.li@docker.com>
 2016-04-07 17:27:13 -07:00
Ying Li
15908298bd Use require, not assert, in server/... tests. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-04-04 17:18:53 -07:00
Ying Li
e8cdc32f0b Clean up after rebase and address review comments 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-03-23 13:24:52 -07:00
Ying Li
49be037bdd Change GetOrCreateTimestamp to only create a new timestamp if the old is expired. 
This is in preparation for the server validation automatically generating a timestamp
when an update is applied.

Signed-off-by: Ying Li <ying.li@docker.com>
 2016-03-23 13:24:52 -07:00
David Lawrence
9ff2558f81 unifying timestamp generation code so server/timestamp/timestamp.go isn't going its own unique version 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-03-23 13:24:52 -07:00
David Lawrence
bfee37d471 update top level Signed.Signed to be a *json.RawMessage 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-03-18 16:18:53 -07:00
Riyaz Faizullabhoy
9ecd899e25 Removing key import and gun from cryptoservice 
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
 2016-03-18 11:31:03 -07:00
Ying Li
e1397f4b03 Use updated-at for last modification date for getting current metadata 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-03-14 17:18:18 -07:00
Ying Li
802673fc9d Add cache control headers to Getting metadata 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-03-14 17:18:18 -07:00
Ying Li
8768c12901 Return the creation date for GetChecksum and GetCurrent from the server database store. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-03-14 17:18:18 -07:00
HuKeping
6cd6b4726c [MISC 1/4] Tiny refactor 
Reduce function "snapshotExpired" in a simpler form and replace the
literal string by the constants defined in the data package.

Signed-off-by: Hu Keping <hukeping@huawei.com>
 2016-03-11 16:43:44 +08:00
HuKeping
4d9e2e5e16 [PATCH 7/8] Update the server side 
Signed-off-by: Hu Keping <hukeping@huawei.com>
 2016-03-11 10:45:01 +08:00
David Lawrence
cb2dd07edc the server was not setting the longer snapshot expiry time. When generating a timestamp it was also retriving the snapshot directly from the database and only validating the checksum still matched what was in the timestamp. Due to the addition of consistent downloads, this mean a new snapshot never got generated. It is necessary for GetOrCreateTimestamp to call GetOrCreateSnapshot to ensure a new snapshot is generated as and when required 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-02-24 15:51:31 -08:00
Jessica Frazelle
a64db12c04 change url from jfrazelle/go to docker/go 
Signed-off-by: Jessica Frazelle <acidburn@docker.com>
 2016-01-26 08:43:38 -08:00
Ying Li
cf4b77b760 Revert "switching out to consistently use canonical json for all marshalling of TUF data" 
This reverts commit f417c834c4.

Signed-off-by: Ying Li <ying.li@docker.com>
 2016-01-08 14:53:09 -08:00
David Lawrence
f417c834c4 switching out to consistently use canonical json for all marshalling of TUF data 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-06 11:15:27 -08:00
David Lawrence
38d2175087 tests for new validation code 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-16 15:06:48 -08:00
David Lawrence
844c1872c4 adding tests for server/snapshot/snapshot.go 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 12:55:09 -08:00
David Lawrence
cae5940c70 generate snapshots server side 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 12:55:09 -08:00
David Lawrence
e20773f2b1 renaming TimestampKey and ErrTimestampKeyExists to just Key and ErrKeyExists 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-03 11:25:45 -08:00
David Lawrence
c2c474b9c6 generalize notary server key storage to be able to handle any role, not just timestamps 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-03 11:25:45 -08:00
David Lawrence
f73560d839 creating concrete types for the various key ciphers 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-10-28 16:02:55 -07:00
David Lawrence
2833a88292 adding gotuf to notary 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-10-27 16:36:06 -07:00
Jessica Frazelle
74b4ef064c change canonical json package 
update godeps for gotuf and canonical json

Signed-off-by: Jessica Frazelle <acidburn@docker.com>
 2015-09-03 20:11:49 -07:00
Derek McGowan
f9c63780b7 Use gotuf expires function 
The gotuf library defines a function to check expiration of timestamps which notary will make use of.

Signed-off-by: Derek McGowan <derek@mcgstyle.net> (github: dmcgowan)
 2015-07-29 17:11:56 -07:00
David Lawrence
7db33797a8 fixing timestamp errors on list 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-07-20 10:35:40 -07:00
David Lawrence
5015b1f47d fixing timestamps, clearing changelists, and the Adding target byte log 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-07-18 17:55:13 -07:00
Aaron Lehmann
d2ea9cc0d5 Updates to notary for gotuf's split of PublicKey and PrivateKey interfaces 
Functions should now take data.PublicKey or data.PrivateKey instead of
data.Key.

Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com>
 2015-07-17 11:35:22 -07:00
Aaron Lehmann
125d72fd77 Big refactor to make signer use cryptoservices 
- Add MemoryFileStore, a partial FileStore implementation that doesn't
  persist on disk.

- Create a KeyStore interface that allows pluggable key store types. Use
  this interface in the cryptoservice implementation.

- Add KeyMemoryStore, which uses MemoryFileStore to provide a KeyStore.

- Add GetKey and DeleteKey functions to cryptoservice.CryptoService.

- Refactor the hardware RSA signing service as a CryptoService.

- Replace custom ed25519 code with cryptoservice.CryptoService.

Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com>
 2015-07-17 09:33:19 -07:00
David Lawrence
40921a4bed fixing lint and vet errors 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-07-13 18:18:33 -07:00
David Lawrence
ec08d28610 provide an additional handler to allow clients to update any set of TUF metadata atomically 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-07-13 18:18:33 -07:00
Aaron Lehmann
e4704f9729 Update notary for removal of signed.Signer 
We now deal with CryptoServices directly instead of passing around
Signers.

UnlockedSigner becomes UnlockedCryptoService because it no longer
contains a Signer.

Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com>
 2015-07-13 15:18:02 -07:00
Diogo Monica
765a2cf661 Refactor crypto service 
Signed-off-by: Diogo Monica <diogo@docker.com>
 2015-07-13 13:53:47 -07:00
David Lawrence
89379a728c adding timestamping and some general cleanup 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-07-03 15:38:09 -07:00