public sealed class ContainerImageSignature : IMessage<ContainerImageSignature>, IEquatable<ContainerImageSignature>, IDeepCloneable<ContainerImageSignature>, IBufferMessage, IMessage
Reference documentation and code samples for the Confidential Computing v1 API class ContainerImageSignature.
ContainerImageSignature holds necessary metadata to verify a container image signature.
Implements
IMessageContainerImageSignature, IEquatableContainerImageSignature, IDeepCloneableContainerImageSignature, IBufferMessage, IMessageNamespace
Google.Cloud.ConfidentialComputing.V1Assembly
Google.Cloud.ConfidentialComputing.V1.dll
Constructors
ContainerImageSignature()
public ContainerImageSignature()
ContainerImageSignature(ContainerImageSignature)
public ContainerImageSignature(ContainerImageSignature other)
Parameter | |
---|---|
Name | Description |
other | ContainerImageSignature |
Properties
Payload
public ByteString Payload { get; set; }
Optional. The binary signature payload following the SimpleSigning format https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md#simple-signing. This payload includes the container image digest.
Property Value | |
---|---|
Type | Description |
ByteString |
PublicKey
public ByteString PublicKey { get; set; }
Optional. Reserved for future use.
Property Value | |
---|---|
Type | Description |
ByteString |
SigAlg
public SigningAlgorithm SigAlg { get; set; }
Optional. Reserved for future use.
Property Value | |
---|---|
Type | Description |
SigningAlgorithm |
Signature
public ByteString Signature { get; set; }
Optional. A signature over the payload. The container image digest is incorporated into the signature as follows:
- Generate a SimpleSigning format payload that includes the container image digest.
- Generate a signature over SHA256 digest of the payload.
The signature generation process can be represented as follows:
Sign(sha256(SimpleSigningPayload(sha256(Image Manifest))))
Property Value | |
---|---|
Type | Description |
ByteString |