Adds signature annotations for each layer in a manifest
Adds signature annotations for each manifest entry in the oci index
version is required as input now
io.gardenlinux.oci.signature annotation contains signature of string in io.gardenlinux.oci.signed-string.
io.gardenlinux.oci.signed-string is a concatenation of digest of content(layer blob or json manifest), cname, architecture, and version.
pub/priv key pair can be added as parameter, or default of cert/oci-sign is used currently for development. We might want to add what $(PREFIX) like in cert/build. For now, we can work with defaults until we fully integrate it.
io.gardenlinux.oci.signature
annotation contains signature of string inio.gardenlinux.oci.signed-string
.io.gardenlinux.oci.signed-string
is a concatenation of digest of content(layer blob or json manifest), cname, architecture, and version.pub/priv key pair can be added as parameter, or default of
cert/oci-sign
is used currently for development. We might want to add what $(PREFIX) like in cert/build. For now, we can work with defaults until we fully integrate it.fixes gardenlinux/python-gardenlinux-lib#25