Closed lukpueh closed 2 weeks ago
Note that unlike #429, this PR does not add a "ssh Verifier to SSlibKey" conversion function, because with the re-design there does not seem to be a use case.
The general workflow should be:
Btw. creating a Signer is currently a bit cumbersome:
NewSignerFromFile(path string)
or NewSignerFromKey(key SSLibKey, path string)
functions would be helpful. I can add those in a separate PR, if there is a need.
Previously, ssh
Key
satisfied both thedsse.Verifier
interface and served as TUF metadata key container. Unfortunately, it didn't seem feasible to wire up the key container with the current TUF metadata implementation, which usesSSlibKey
.This commit re-designs the ssh key implementation to use SSlibKey as key container and a separate Verifier for verification.
See https://github.com/gittuf/gittuf/pull/429#issuecomment-2151588628 for more detailed design considerations.
Change details: