public sealed class ContainerImageSignature : IMessage<ContainerImageSignature>, IEquatable<ContainerImageSignature>, IDeepCloneable<ContainerImageSignature>, IBufferMessage, IMessageReference documentation and code samples for the Confidential Computing v1 API class ContainerImageSignature.
ContainerImageSignature holds necessary metadata to verify a container image signature.
Implements
IMessageContainerImageSignature, IEquatableContainerImageSignature, IDeepCloneableContainerImageSignature, IBufferMessage, IMessageNamespace
Google.Cloud.ConfidentialComputing.V1Assembly
Google.Cloud.ConfidentialComputing.V1.dll
Constructors
ContainerImageSignature()
public ContainerImageSignature()ContainerImageSignature(ContainerImageSignature)
public ContainerImageSignature(ContainerImageSignature other)| Parameter | |
|---|---|
| Name | Description |
other | ContainerImageSignature |
Properties
Payload
public ByteString Payload { get; set; }Optional. The binary signature payload following the SimpleSigning format https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md#simple-signing. This payload includes the container image digest.
| Property Value | |
|---|---|
| Type | Description |
ByteString | |
PublicKey
public ByteString PublicKey { get; set; }Optional. Reserved for future use.
| Property Value | |
|---|---|
| Type | Description |
ByteString | |
SigAlg
public SigningAlgorithm SigAlg { get; set; }Optional. Reserved for future use.
| Property Value | |
|---|---|
| Type | Description |
SigningAlgorithm | |
Signature
public ByteString Signature { get; set; }Optional. A signature over the payload. The container image digest is incorporated into the signature as follows:
- Generate a SimpleSigning format payload that includes the container image digest.
- Generate a signature over SHA256 digest of the payload.
The signature generation process can be represented as follows:
Sign(sha256(SimpleSigningPayload(sha256(Image Manifest))))
| Property Value | |
|---|---|
| Type | Description |
ByteString | |