gen, protos: remove ExtendedVerificationMaterials, embed its members
#36
Conversation
…als` Signed-off-by: William Woodruff <[email protected]>
woodruffw
changed the title
VerificationData to `ExtendedVerificationMateri…VerificationData to ExtendedVerificationMaterials
|
cc @znewman01 and @kommendorkapten |
|
Sidenote: I'm trustworthy (pinky promise!) but it isn't ideal that the generated code gets folded by GitHub's code review view... |
...and embed its contents into the `Bundle` message. Signed-off-by: William Woodruff <[email protected]>
protos/sigstore_bundle.proto
Outdated
| oneof content { | ||
| dev.sigstore.common.v1.MessageSignature message_signature = 4; | ||
| dev.sigstore.common.v1.MessageSignature message_signature = 5; |
There was a problem hiding this comment.
I think the bundle format is now being used by sigstore-js, so we can't renumber the tags (@kommendorkapten ?)
woodruffw
changed the title
VerificationData to ExtendedVerificationMaterialsExtendedVerificationMaterials, embed its members
woodruffw
changed the title
ExtendedVerificationMaterials, embed its membersExtendedVerificationMaterials, embed its members
|
Yes, sigstore-js is using this, and some other components related to that work. I think I would prefer to have it grouped as is, as they are a bit related. And also, for future extensions like e.g. RoughTime, that can be added to the |
|
I agree 100% that they're related, but I think (per what @haydentherapper said) that they're key to the "value ad" provided by Sigstore vs. ordinary signing systems. Given that, I think we want to shy away from branding these as Perhaps instead of putting them in |
|
Yes, that sounds like a good idea! |
|
Awesome! I'll update the PR again. |
Signed-off-by: William Woodruff <[email protected]>
|
Done; I had to move |
|
Awesome, I'll take a look later today or tomorrow, busy with meetings rest of the day! |
Makes sense. I can merge early next week if no more comments. |
|
Thanks both! |
…iondata Signed-off-by: William Woodruff <[email protected]>
woodruffw
dismissed stale reviews from kommendorkapten and haydentherapper
via
be16fa8
woodruffw
requested review from
haydentherapper and
kommendorkapten
and removed request for
haydentherapper and
kommendorkapten
|
Deconflicted! Sorry for the review request churn; I thought I could request two at once 😅 |
Signed-off-by: William Woodruff <[email protected]>
Fortunately the tests would fail if it didn't match: https://github.com/sigstore/protobuf-specs/blob/main/.github/workflows/generate.yml |
Good to know! I'm glad that's being cross-checked. |
See #30.
Signed-off-by: William Woodruff [email protected]