Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Breaking change: Respect tlog-upload=false, default to true #2505

Merged
merged 6 commits into from
Dec 6, 2022
Merged

Breaking change: Respect tlog-upload=false, default to true #2505

merged 6 commits into from
Dec 6, 2022

Conversation

haydentherapper
Copy link
Contributor

@haydentherapper haydentherapper commented Dec 2, 2022
edited
Loading

This changes the default for uploading to the tlog to always upload unless explicitly set to false. We no longer require checking if the flow is keyless or not, as it'll be up to the uploader to decide if they want to upload to Rekor or not.

When verifying, if you set tlog-upload=false, then you must set insecure-skip-tlog-verify=true

Signed-off-by: Hayden Blauzvern hblauzvern@google.com

Summary

Release Note

BREAKING: Require tlog-upload=false to not upload to Rekor. By default, signatures will be uploaded.

Documentation

@haydentherapper
Copy link
Contributor Author

This is related to #2504, and copies in the e2e tests from there.

I think this is the final removal of things related to cosign_experimental. Now, we'll upload a signed artifact signature to Rekor whether you're using the "keyless" Fulcio flow or a provided key. If you want to disable the upload, set tlog-upload=false, and on verification, insecure-skip-tlog-verify=true.

@haydentherapper haydentherapper changed the title Respect tlog-upload=false, default to true Breaking change: Respect tlog-upload=false, default to true Dec 2, 2022
@codecov-commenter
Copy link

codecov-commenter commented Dec 2, 2022
edited
Loading

Codecov Report

Merging #2505 (3686e9a) into main (f7f7f3d) will increase coverage by 0.04%.
The diff coverage is 12.50%.

@@            Coverage Diff             @@
##             main    #2505      +/-   ##
==========================================
+ Coverage   29.62%   29.66%   +0.04%     
==========================================
  Files         139      139              
  Lines        8558     8553       -5     
==========================================
+ Hits         2535     2537       +2     
+ Misses       5666     5659       -7     
  Partials      357      357
Impacted Files Coverage Δ
cmd/cosign/cli/options/attest.go 0.00% <0.00%> (ø)
cmd/cosign/cli/options/policy.go 0.00% <0.00%> (ø)
cmd/cosign/cli/options/sign.go 0.00% <0.00%> (ø)
cmd/cosign/cli/options/signblob.go 0.00% <0.00%> (ø)
cmd/cosign/cli/sign.go 0.00% <0.00%> (ø)
cmd/cosign/cli/sign/sign.go 15.84% <0.00%> (+0.50%) ⬆️
cmd/cosign/cli/verify/verify.go 19.74% <0.00%> (-0.07%) ⬇️
cmd/cosign/cli/verify/verify_attestation.go 0.00% <0.00%> (ø)
cmd/cosign/cli/verify/verify_blob.go 46.02% <100.00%> (+0.45%) ⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

@haydentherapper haydentherapper mentioned this pull request Dec 2, 2022
Merged
@haydentherapper haydentherapper mentioned this pull request Dec 5, 2022
Closed
3 tasks
asraa
asraa reviewed Dec 6, 2022
View reviewed changes
Copy link
Contributor

@asraa asraa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

minor comments

@haydentherapper
Respect tlog-upload=false, default to true
900667b 
This changes the default for uploading to the tlog to always upload
unless explicitly set to false. We no longer require checking if the
flow is keyless or not, as it'll be up to the uploader to decide if they
want to upload to Rekor or not.

When verifying, if you set tlog-upload=false, then you must set
insecure-skip-tlog-verify=true

Signed-off-by: Hayden Blauzvern <hblauzvern@google.com>
@haydentherapper
Update docs
43ee814 
Signed-off-by: Hayden Blauzvern <hblauzvern@google.com>
@haydentherapper
Add back tags
84fe50e 
Signed-off-by: Hayden Blauzvern <hblauzvern@google.com>
@haydentherapper
Remove unused function
7ac309c 
Signed-off-by: Hayden Blauzvern <hblauzvern@google.com>
@haydentherapper
Address comments
d56b8ce 
Signed-off-by: Hayden Blauzvern <hblauzvern@google.com>
asraa
asraa reviewed Dec 6, 2022
View reviewed changes
Copy link
Contributor

@asraa asraa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

AAH! Just one minor thing

test/e2e_test.go Outdated Show resolved Hide resolved
@haydentherapper
Remove println
3686e9a 
Signed-off-by: Hayden Blauzvern <hblauzvern@google.com>
@asraa asraa mentioned this pull request Dec 6, 2022
Merged
@asraa asraa enabled auto-merge (squash) December 6, 2022 22:13
@asraa asraa merged commit 980905e into sigstore:main Dec 6, 2022
@github-actions github-actions bot added this to the v1.14.0 milestone Dec 6, 2022
@haydentherapper haydentherapper deleted the tlog-upload branch December 6, 2022 22:48
@vaikas vaikas mentioned this pull request Jan 4, 2023
Merged
@suzuki-shunsuke suzuki-shunsuke mentioned this pull request Jan 11, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@asraa asraa asraa approved these changes

@priyawadhwa priyawadhwa Awaiting requested review from priyawadhwa

@hectorj2f hectorj2f Awaiting requested review from hectorj2f

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v1.14.0
Development

Successfully merging this pull request may close these issues.
3 participants
@haydentherapper @codecov-commenter @asraa