public final class PgpSignedAttestation extends GeneratedMessageV3 implements PgpSignedAttestationOrBuilder
An attestation wrapper with a PGP-compatible signature. This message only
supports ATTACHED
signatures, where the payload that is signed is included
alongside the signature itself in the same file.
Protobuf type grafeas.v1beta1.attestation.PgpSignedAttestation
Inherited Members
com.google.protobuf.GeneratedMessageV3.<ListT>makeMutableCopy(ListT)
com.google.protobuf.GeneratedMessageV3.<ListT>makeMutableCopy(ListT,int)
com.google.protobuf.GeneratedMessageV3.<T>emptyList(java.lang.Class<T>)
com.google.protobuf.GeneratedMessageV3.internalGetMapFieldReflection(int)
Static Fields
CONTENT_TYPE_FIELD_NUMBER
public static final int CONTENT_TYPE_FIELD_NUMBER
Field Value |
Type |
Description |
int |
|
PGP_KEY_ID_FIELD_NUMBER
public static final int PGP_KEY_ID_FIELD_NUMBER
Field Value |
Type |
Description |
int |
|
SIGNATURE_FIELD_NUMBER
public static final int SIGNATURE_FIELD_NUMBER
Field Value |
Type |
Description |
int |
|
Static Methods
getDefaultInstance()
public static PgpSignedAttestation getDefaultInstance()
getDescriptor()
public static final Descriptors.Descriptor getDescriptor()
newBuilder()
public static PgpSignedAttestation.Builder newBuilder()
newBuilder(PgpSignedAttestation prototype)
public static PgpSignedAttestation.Builder newBuilder(PgpSignedAttestation prototype)
public static PgpSignedAttestation parseDelimitedFrom(InputStream input)
public static PgpSignedAttestation parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
parseFrom(byte[] data)
public static PgpSignedAttestation parseFrom(byte[] data)
Parameter |
Name |
Description |
data |
byte[]
|
parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
public static PgpSignedAttestation parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
parseFrom(ByteString data)
public static PgpSignedAttestation parseFrom(ByteString data)
parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
public static PgpSignedAttestation parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
public static PgpSignedAttestation parseFrom(CodedInputStream input)
public static PgpSignedAttestation parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
public static PgpSignedAttestation parseFrom(InputStream input)
public static PgpSignedAttestation parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
parseFrom(ByteBuffer data)
public static PgpSignedAttestation parseFrom(ByteBuffer data)
parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
public static PgpSignedAttestation parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
parser()
public static Parser<PgpSignedAttestation> parser()
Methods
equals(Object obj)
public boolean equals(Object obj)
Parameter |
Name |
Description |
obj |
Object
|
Overrides
getContentType()
public PgpSignedAttestation.ContentType getContentType()
Type (for example schema) of the attestation payload that was signed.
The verifier must ensure that the provided type is one that the verifier
supports, and that the attestation payload is a valid instantiation of that
type (for example by validating a JSON schema).
.grafeas.v1beta1.attestation.PgpSignedAttestation.ContentType content_type = 3;
getContentTypeValue()
public int getContentTypeValue()
Type (for example schema) of the attestation payload that was signed.
The verifier must ensure that the provided type is one that the verifier
supports, and that the attestation payload is a valid instantiation of that
type (for example by validating a JSON schema).
.grafeas.v1beta1.attestation.PgpSignedAttestation.ContentType content_type = 3;
Returns |
Type |
Description |
int |
The enum numeric value on the wire for contentType.
|
getDefaultInstanceForType()
public PgpSignedAttestation getDefaultInstanceForType()
getKeyIdCase()
public PgpSignedAttestation.KeyIdCase getKeyIdCase()
getParserForType()
public Parser<PgpSignedAttestation> getParserForType()
Overrides
getPgpKeyId()
public String getPgpKeyId()
The cryptographic fingerprint of the key used to generate the signature,
as output by, e.g. gpg --list-keys
. This should be the version 4, full
160-bit fingerprint, expressed as a 40 character hexidecimal string. See
https://tools.ietf.org/html/rfc4880#section-12.2 for details.
Implementations may choose to acknowledge "LONG", "SHORT", or other
abbreviated key IDs, but only the full fingerprint is guaranteed to work.
In gpg, the full fingerprint can be retrieved from the fpr
field
returned when calling --list-keys with --with-colons. For example:
<code><code>
gpg --with-colons --with-fingerprint --force-v4-certs \
--list-keys attester@example.com
tru::1:1513631572:0:3:1:5
pub:...<SNIP>...
fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:
</code></code><code>
Above, the fingerprint is </code>24FF6481B76AC91E66A00AC657A93A81EF3AE6FB
.
string pgp_key_id = 2;
Returns |
Type |
Description |
String |
The pgpKeyId.
|
getPgpKeyIdBytes()
public ByteString getPgpKeyIdBytes()
The cryptographic fingerprint of the key used to generate the signature,
as output by, e.g. gpg --list-keys
. This should be the version 4, full
160-bit fingerprint, expressed as a 40 character hexidecimal string. See
https://tools.ietf.org/html/rfc4880#section-12.2 for details.
Implementations may choose to acknowledge "LONG", "SHORT", or other
abbreviated key IDs, but only the full fingerprint is guaranteed to work.
In gpg, the full fingerprint can be retrieved from the fpr
field
returned when calling --list-keys with --with-colons. For example:
<code><code>
gpg --with-colons --with-fingerprint --force-v4-certs \
--list-keys attester@example.com
tru::1:1513631572:0:3:1:5
pub:...<SNIP>...
fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:
</code></code><code>
Above, the fingerprint is </code>24FF6481B76AC91E66A00AC657A93A81EF3AE6FB
.
string pgp_key_id = 2;
Returns |
Type |
Description |
ByteString |
The bytes for pgpKeyId.
|
getSerializedSize()
public int getSerializedSize()
Returns |
Type |
Description |
int |
|
Overrides
getSignature()
public String getSignature()
Required. The raw content of the signature, as output by GNU Privacy Guard
(GPG) or equivalent. Since this message only supports attached signatures,
the payload that was signed must be attached. While the signature format
supported is dependent on the verification implementation, currently only
ASCII-armored (--armor
to gpg), non-clearsigned (--sign
rather than
--clearsign
to gpg) are supported. Concretely, gpg --sign --armor
--output=signature.gpg payload.json
will create the signature content
expected in this field in signature.gpg
for the payload.json
attestation payload.
string signature = 1;
Returns |
Type |
Description |
String |
The signature.
|
getSignatureBytes()
public ByteString getSignatureBytes()
Required. The raw content of the signature, as output by GNU Privacy Guard
(GPG) or equivalent. Since this message only supports attached signatures,
the payload that was signed must be attached. While the signature format
supported is dependent on the verification implementation, currently only
ASCII-armored (--armor
to gpg), non-clearsigned (--sign
rather than
--clearsign
to gpg) are supported. Concretely, gpg --sign --armor
--output=signature.gpg payload.json
will create the signature content
expected in this field in signature.gpg
for the payload.json
attestation payload.
string signature = 1;
Returns |
Type |
Description |
ByteString |
The bytes for signature.
|
hasPgpKeyId()
public boolean hasPgpKeyId()
The cryptographic fingerprint of the key used to generate the signature,
as output by, e.g. gpg --list-keys
. This should be the version 4, full
160-bit fingerprint, expressed as a 40 character hexidecimal string. See
https://tools.ietf.org/html/rfc4880#section-12.2 for details.
Implementations may choose to acknowledge "LONG", "SHORT", or other
abbreviated key IDs, but only the full fingerprint is guaranteed to work.
In gpg, the full fingerprint can be retrieved from the fpr
field
returned when calling --list-keys with --with-colons. For example:
<code><code>
gpg --with-colons --with-fingerprint --force-v4-certs \
--list-keys attester@example.com
tru::1:1513631572:0:3:1:5
pub:...<SNIP>...
fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:
</code></code><code>
Above, the fingerprint is </code>24FF6481B76AC91E66A00AC657A93A81EF3AE6FB
.
string pgp_key_id = 2;
Returns |
Type |
Description |
boolean |
Whether the pgpKeyId field is set.
|
hashCode()
Returns |
Type |
Description |
int |
|
Overrides
internalGetFieldAccessorTable()
protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Overrides
isInitialized()
public final boolean isInitialized()
Overrides
newBuilderForType()
public PgpSignedAttestation.Builder newBuilderForType()
newBuilderForType(GeneratedMessageV3.BuilderParent parent)
protected PgpSignedAttestation.Builder newBuilderForType(GeneratedMessageV3.BuilderParent parent)
Overrides
newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
protected Object newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
Returns |
Type |
Description |
Object |
|
Overrides
toBuilder()
public PgpSignedAttestation.Builder toBuilder()
writeTo(CodedOutputStream output)
public void writeTo(CodedOutputStream output)
Overrides