Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Switch DSSE provider to go-securesystemslib #442

Merged
merged 1 commit into from
Oct 3, 2021
Merged

Switch DSSE provider to go-securesystemslib #442

merged 1 commit into from
Oct 3, 2021

Conversation

adityasaky
Copy link
Member

@adityasaky adityasaky commented Sep 28, 2021
edited
Loading

Signed-off-by: Aditya Sirish aditya@saky.in

Summary

Switches from using github.com/in-toto/in-toto-golang/pkg/ssl to github.com/secure-systems-lab/go-securesystemslib/dsse.

Ticket Link

N/A.
See: in-toto/in-toto-golang#122

Release Note

Uses new provider for DSSE.

@adityasaky
Copy link
Member Author

I should note that we're planning to deprecate in_toto.NewSSLSigner in favour of in_toto.NewDSSESigner. Happy to submit a patch when that's live. 😄

@lukehinds
Copy link
Member

I should note that we're planning to deprecate in_toto.NewSSLSigner in favour of in_toto.NewDSSESigner. Happy to submit a patch when that's live. smile

yes please do

lukehinds
lukehinds requested changes Sep 30, 2021
View reviewed changes
Copy link
Member

@lukehinds lukehinds left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think the tests need porting too:

tests/e2e_test.go:351:19: undefined: in_toto.PredicateProvenanceV01

https://github.com/sigstore/rekor/pull/442/checks?check_run_id=3742359781

@adityasaky
Multiple fixes:
f730292 
1. Switch DSSE provider to go-securesystemslib
2. Update in-toto and use newly renamed SLSA provenance predicate

Signed-off-by: Aditya Sirish <aditya@saky.in>
@dlorenc dlorenc merged commit 58652e3 into sigstore:main Oct 3, 2021
@adityasaky adityasaky deleted the switch-dsse-provider branch October 3, 2021 20:45
@adityasaky adityasaky mentioned this pull request Oct 17, 2021
Merged
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dlorenc dlorenc dlorenc approved these changes

@lukehinds lukehinds Awaiting requested review from lukehinds

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@adityasaky @lukehinds @dlorenc