Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: adding OCSP revocation checks to Verify #295

Merged
merged 32 commits into from Apr 20, 2023
Merged

feat: adding OCSP revocation checks to Verify #295

merged 32 commits into from Apr 20, 2023

Conversation

kody-kimberl
Copy link
Contributor

This PR adds OCSP revocation checking to the Verify function using the notation-core-go's revocation package

Based on my design from notaryproject/notation-core-go#132 and the specification here.

This PR addresses part of the following issue:

It is dependent on notaryproject/notation-core-go#134

Signed-off-by: Kody Kimberl kody.kimberl.work@gmail.com

@kody-kimberl
Adding revocation to Verify using notation-core-go implementation
45e4f33 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
byronchien
byronchien reviewed Mar 29, 2023
View reviewed changes
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
@kody-kimberl
Refactoring verifyRevocation and changing timeout to failing
1da5cdc 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
byronchien
byronchien previously approved these changes Mar 29, 2023
View reviewed changes
@kody-kimberl
updating to reflect new changes in notation-core-go PR notaryproject#134
5eb8697 


Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
byronchien
byronchien previously approved these changes Mar 29, 2023
View reviewed changes
@kody-kimberl
updating to reflect new changes in notation-core-go PR notaryproject#134
e6275da 


Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
updating to reflect new naming in notation-core-go
fcf4050 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
rgnote
rgnote reviewed Apr 4, 2023
View reviewed changes
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
@kody-kimberl
refactoring constructor with revocation client
62276d1 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Updating to keep in-sync with changes to notation-core-go
b46ba1d 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Updating again to keep in-sync with changes to notation-core-go
d0594e5 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
priteshbandi
priteshbandi reviewed Apr 10, 2023
View reviewed changes
verifier/verifier.go Outdated Show resolved Hide resolved
priteshbandi
priteshbandi reviewed Apr 10, 2023
View reviewed changes
verifier/verifier.go Outdated Show resolved Hide resolved
priteshbandi
priteshbandi reviewed Apr 10, 2023
View reviewed changes
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier_test.go Show resolved Hide resolved
@kody-kimberl
Addressing new PR comments
0ac4a13 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Updating to reflect addition of the revocation/base package in notati…
516f187 
…on-core-go

Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Incorporating NonRevokable Result and refactoring constructors
72490db 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Updating to align with result name change in core-go
83ec701 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Adjusting for invalidityDate change in notation-core-go
e150ce1 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
patrickzheng200
patrickzheng200 reviewed Apr 18, 2023
View reviewed changes
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
@kody-kimberl
Addressing comments
206d21b 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Adding VerifierOptions
477691c 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Implementing GetAuthenticSigningTime
6556b33 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Updating tests
92693c1 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
priteshbandi
priteshbandi reviewed Apr 19, 2023
View reviewed changes
Copy link
Contributor

@priteshbandi priteshbandi left a comment
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM; Please resolve the merge conflict

verifier/verifier.go Outdated Show resolved Hide resolved
patrickzheng200
patrickzheng200 reviewed Apr 19, 2023
View reviewed changes
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
kody-kimberl and others added 4 commits April 19, 2023 10:45
@kody-kimberl
Merge branch 'main' into main
62b753f 
Signed-off-by: Kody Kimberl <59657721+kody-kimberl@users.noreply.github.com>
@kody-kimberl
Updated naming
7da3157 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Updated to reflect change to GetAuthenticSigningTime error message
72888b1 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Updated to change wording of OK debug log
d2a8f85 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
rgnote
rgnote previously approved these changes Apr 19, 2023
View reviewed changes
Copy link
Contributor

@rgnote rgnote left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@shizhMSFT shizhMSFT mentioned this pull request Apr 20, 2023
Merged
@kody-kimberl
Changed GetAuthenticSigningTime to AuthenticSigningTime
3786bad 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@kody-kimberl
Updated notation-core-go dependency now that notaryproject#134 is merged
cc04997 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
@codecov-commenter
Copy link

codecov-commenter commented Apr 20, 2023
edited

Codecov Report

Merging #295 (bbfdf3d) into main (67a477f) will increase coverage by 0.99%.
The diff coverage is 96.29%.

📣 This organization is not using Codecov’s GitHub App Integration. We recommend you install it so Codecov can continue to function properly for your repositories. Learn more

@@            Coverage Diff             @@
##             main     #295      +/-   ##
==========================================
+ Coverage   73.39%   74.39%   +0.99%     
==========================================
  Files          23       23              
  Lines        2101     2175      +74     
==========================================
+ Hits         1542     1618      +76     
+ Misses        443      439       -4     
- Partials      116      118       +2
Impacted Files Coverage Δ
verifier/verifier.go 81.53% <96.29%> (+3.31%) ⬆️

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

priteshbandi
priteshbandi previously approved these changes Apr 20, 2023
View reviewed changes
Copy link
Contributor

@priteshbandi priteshbandi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

patrickzheng200
patrickzheng200 reviewed Apr 20, 2023
View reviewed changes
Copy link
Contributor

@patrickzheng200 patrickzheng200 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM with one nit comment.

verifier/verifier.go Outdated Show resolved Hide resolved
shizhMSFT
shizhMSFT reviewed Apr 20, 2023
View reviewed changes
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Outdated Show resolved Hide resolved
verifier/verifier.go Show resolved Hide resolved
@kody-kimberl
Addressing newest PR comments
dfccf1f 
Signed-off-by: Kody Kimberl <kody.kimberl.work@gmail.com>
shizhMSFT
shizhMSFT approved these changes Apr 20, 2023
View reviewed changes
Copy link
Contributor

@shizhMSFT shizhMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@kody-kimberl kody-kimberl mentioned this pull request Apr 20, 2023
Open
@priteshbandi priteshbandi merged commit 3dd11cb into notaryproject:main Apr 20, 2023
6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@patrickzheng200 patrickzheng200 patrickzheng200 left review comments

@priteshbandi priteshbandi priteshbandi approved these changes

@shizhMSFT shizhMSFT shizhMSFT approved these changes

@rgnote rgnote rgnote left review comments

@byronchien byronchien byronchien left review comments

@gokarnm gokarnm Awaiting requested review from gokarnm gokarnm is a code owner

@JeyJeyGao JeyJeyGao Awaiting requested review from JeyJeyGao JeyJeyGao is a code owner

@justincormack justincormack Awaiting requested review from justincormack

@NiazFK NiazFK Awaiting requested review from NiazFK NiazFK is a code owner

@SteveLasker SteveLasker Awaiting requested review from SteveLasker

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
7 participants
@kody-kimberl @codecov-commenter @rgnote @priteshbandi @byronchien @shizhMSFT @patrickzheng200