Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WIP feat: Use manifest #112

Closed
wants to merge 7 commits into from
Closed

WIP feat: Use manifest #112

wants to merge 7 commits into from

Conversation

laurentsimon
Copy link
Collaborator

@laurentsimon laurentsimon marked this pull request as draft January 19, 2024 16:04
@laurentsimon
backup
391dca0 
Signed-off-by: laurentsimon <[email protected]>
@laurentsimon
Missing file
7b611bd 
Signed-off-by: laurentsimon <[email protected]>
@laurentsimon
add comment
20c6c94 
Signed-off-by: laurentsimon <[email protected]>
@laurentsimon
Fix
70679fa 
Signed-off-by: laurentsimon <[email protected]>
@laurentsimon
patch for upstream
5af662e 
Signed-off-by: laurentsimon <[email protected]>
@laurentsimon
Copy link
Collaborator Author

laurentsimon commented Apr 12, 2024
edited
Loading

This is now working with sigstore/sigstore-python#962

High-level:

The pre-submit fail because we need to pull the branch from sigstore/sigstore-python#962

@laurentsimon laurentsimon mentioned this pull request Apr 12, 2024
Merged
3 tasks
@mihaimaruseac
Copy link
Collaborator

This is great! Thank you!

susperius
susperius reviewed Apr 24, 2024
View reviewed changes
model_signing/_manifest.py
files += [f]
stmt = (
dsse._StatementBuilder()
.subjects(
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Shouldn't the subjects be the files?

My mental model had the statement subjects as the artifacts we want to sign so you get subject[n].name = path and subject[n].digest = file_hash. So we would only set the predicate_type field as sigstore.dev/model-transparency/manifest/v1 and that describes everything we need to know about the subjects. Furthermore, the predicate could then hold metadata like {"hash_algorithm": "abc"}.

PLMK if there is something I don't get here.

See https://github.com/in-toto/attestation/blob/main/spec/v1/statement.md

Copy link
Collaborator Author

@laurentsimon laurentsimon Apr 24, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You're correct that's how intoto works, but there is some discussion here about whether we want to use intoto or not #111

For this PR, I could not pack files in the subject due to some current limitation on the hash type accepted by sigstore-python library (they only accept known hashes, but we use a parallel hash). And I could not use a non-intoto payload for this PoC, because sigstore-python does not support it yet (WIP).

@mihaimaruseac mihaimaruseac added this to the V1 release milestone May 14, 2024
@mihaimaruseac mihaimaruseac mentioned this pull request May 28, 2024
Merged
mihaimaruseac added a commit to mihaimaruseac/model-transparency that referenced this pull request Jun 4, 2024
@mihaimaruseac
Migrate serialize_v0 to new API.
ac1f654 
This is the middle layer of the API design work (sigstore#172). We add a manifest abstract class to represent various manifests (sigstore#111 sigstore#112) and also ways to serialize a model directory into manifests and ways to verify the manifests.

For now, this only does what was formerly known as `serialize_v0`. The v1 and the manifest versions will come soon.

Note: This has a lot of inspiration from sigstore#112, but makes the API work with all the usecases we need to consider right now.

Signed-off-by: Mihai Maruseac <[email protected]>
mihaimaruseac added a commit to mihaimaruseac/model-transparency that referenced this pull request Jun 4, 2024
@mihaimaruseac
Migrate serialize_v0 to new API.
4cae6b3 
This is the middle layer of the API design work (sigstore#172). We add a manifest abstract class to represent various manifests (sigstore#111 sigstore#112) and also ways to serialize a model directory into manifests and ways to verify the manifests.

For now, this only does what was formerly known as `serialize_v0`. The v1 and the manifest versions will come soon.

Note: This has a lot of inspiration from sigstore#112, but makes the API work with all the usecases we need to consider right now.

Signed-off-by: Mihai Maruseac <[email protected]>
mihaimaruseac added a commit to mihaimaruseac/model-transparency that referenced this pull request Jun 4, 2024
@mihaimaruseac
Migrate serialize_v0 to new API.
5b75d08 
This is the middle layer of the API design work (sigstore#172). We add a manifest abstract class to represent various manifests (sigstore#111 sigstore#112) and also ways to serialize a model directory into manifests and ways to verify the manifests.

For now, this only does what was formerly known as `serialize_v0`. The v1 and the manifest versions will come soon.

Note: This has a lot of inspiration from sigstore#112, but makes the API work with all the usecases we need to consider right now.

Signed-off-by: Mihai Maruseac <[email protected]>
mihaimaruseac added a commit that referenced this pull request Jun 5, 2024
@mihaimaruseac
Migrate serialize_v0 to new API (as part of serialization layer) (#190
e9071f1 
)

* Migrate `serialize_v0` to new API.

This is the middle layer of the API design work (#172). We add a manifest abstract class to represent various manifests (#111 #112) and also ways to serialize a model directory into manifests and ways to verify the manifests.

For now, this only does what was formerly known as `serialize_v0`. The v1 and the manifest versions will come soon.

Note: This has a lot of inspiration from #112, but makes the API work with all the usecases we need to consider right now.

Signed-off-by: Mihai Maruseac <[email protected]>

* Clarify some comments

Signed-off-by: Mihai Maruseac <[email protected]>

* Encode name with base64

Signed-off-by: Mihai Maruseac <[email protected]>

* Add another test case

Signed-off-by: Mihai Maruseac <[email protected]>

* Empty commit to retrigger DCO check.

See dcoapp/app#211 (comment)

Signed-off-by: Mihai Maruseac <[email protected]>

---------

Signed-off-by: Mihai Maruseac <[email protected]>
@mihaimaruseac mihaimaruseac mentioned this pull request Jul 27, 2024
Merged
@mihaimaruseac
Copy link
Collaborator

Closing this one now that have #262 ... #267 and #276

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@susperius susperius susperius left review comments

@mihaimaruseac mihaimaruseac Awaiting requested review from mihaimaruseac

@smeiklej smeiklej Awaiting requested review from smeiklej

@haydentherapper haydentherapper Awaiting requested review from haydentherapper

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
V1 release
Development

Successfully merging this pull request may close these issues.

Manifest file
3 participants
@laurentsimon @mihaimaruseac @susperius