signing: add init script and public certificate fixtures

Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>

scripts/signing/avi.crt

@@ -0,0 +1,19 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

scripts/signing/avi_arm.crt

@@ -0,0 +1,20 @@
+-----BEGIN CERTIFICATE-----
+MIIDPjCCAiYCCQDCvpKhNO4VgDANBgkqhkiG9w0BAQsFADBhMQswCQYDVQQGEwJV
+UzETMBEGA1UECAwKU29tZS1TdGF0ZTEhMB8GA1UECgwYSW50ZXJuZXQgV2lkZ2l0
+cyBQdHkgTHRkMRowGAYDVQQDDBFhdmlAYXRvbWljaW5jLmNvbTAeFw0xNzA4MDYx
+MTEzNDZaFw0xODA4MDYxMTEzNDZaMGExCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApT
+b21lLVN0YXRlMSEwHwYDVQQKDBhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQxGjAY
+BgNVBAMMEWF2aUBhdG9taWNpbmMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
+MIIBCgKCAQEA6cyOqxoOJXfDjLcVizyyG32eg9w+Xnen8IefvTztOH9E9LqWs7x7
+VQdi2Np2FJWFjii6gLg8EB4LvKx6WoZWmuT8iYAR5drLo2xbiQjy4iYW+zAkAWXA
+UYctG6HVBBUFMDjm8S6TnR/eqJqIyRdxAvbCqNWjKtIhiHVrQoFeOE3MnME38d+B
+dQiSy63cqqTrrumo6nW1SFj4K/z0aAxqE26/Zdcu++uYwUYQVguFrh3TChiNr7I5
+pLRptseY5HdgftI7g2EStoaQfZ/OQN5k7dnblpEdbBgEywB38aGgJUJae9RLvO9w
+kW+fwBwpknqr6jotYJs+XDJ10hK00PtecwIDAQABMA0GCSqGSIb3DQEBCwUAA4IB
+AQCtiHwJ9mL0RyBFTnXm5dd+uqILjbYHUOYYAvpFg8N7C+EJZbUB8e0gr+DbWweq
+07fHRmalugZsoyhPfLypCWSG36FydimdyUCsQlGS4EWlP2i1s7Kq+E+MnwOhLkwi
+VG0NrPDQxnS2l2KPdsBn85zOXOOsuTSbqPg62UbRU5wsDD6FNquKdPkcDnaY8+OO
+20lgPTSkOYZSOrJTKXFYuc0V8yy7fz1M1MT7YDJQw49yD9agwOcoSrgZKLU8hcvL
+US7SRXbnJ40S3MQe1i6OxHlCPHhz39D1HC3v6aoBH63c1KkPMv150sbrb2vvKPZ8
+9PDb1hBogEa/usgfZlZcMS5z
+-----END CERTIFICATE-----

scripts/signing/ian.crt

@@ -0,0 +1,17 @@
+-----BEGIN CERTIFICATE-----
+MIICujCCAaICCQCQM5hdcrqogjANBgkqhkiG9w0BAQsFADAfMR0wGwYJKoZIhvcN
+AQkBFg5pamNAZG9ja2VyLmNvbTAeFw0xNzA1MzExNjQwMjRaFw0xODA1MzExNjQw
+MjRaMB8xHTAbBgkqhkiG9w0BCQEWDmlqY0Bkb2NrZXIuY29tMIIBIjANBgkqhkiG
+9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1V4UOkYzzDO9F/c5cP5QlmujDk/3A+hKcxdZ
+vqOgM1+4XKSMDES9Tya06X0RjzSEf3fdww9LnXc8iOuRj1X8EgSiKjEKsuO9TG7K
+Qqut+jCM0rqq+pWXvFHrCdjae4b4XhttJG02Ik+0q3/ntm4U2ahajF1KYVyJ2v6R
+lzpZIKpguNEe9eGuRXaSN0/0FfWnZ/GNN7ERLX2ZcEJO7tsiUvIxYG3UQKwQiv/t
+1GyE42I+R0CCaEVUOhTrhTfEvFuEkJHLKM7AY3zVo2NGontCsBCdmsHlgsFSjbwX
+r2OH+kdU9rAPplBWf2QSDvSIqJNI14Wir7BDxwLXH3zE9Q4ZHwIDAQABMA0GCSqG
+SIb3DQEBCwUAA4IBAQCJdFeBNO2XzYwB9GuCqO4FxTcgmoSumIMsum9lirEofQzs
+WZhamiolJhcoIujJPtcT4Wx2/TMACBm5298d9Afh5Q/Tx6n1dVDoiNdIhQ04ZCPI
+ykFGfCRW9m8sUTT6BWESVdrQQ9Td64byPjSqgSo+5t/UKFjcbDAdqfMi2Y82jx6o
+5SVx5E95Aqs3HcdejUwmWqT/emK5Wl5DNupfxB636gAp3K6uTPcBipV8oSpqVZE3
+tdi+DQNp/ZmTwV7nFIjUmzAJbdnS9zKGZXdDFVviD5ZH5VqXGFSPZF9t7VCZqREi
+edHjU48BRwz1fGjH4rvW4IaD8Yr0MvSWW8BqUYsz
+-----END CERTIFICATE-----

scripts/signing/ian_arm.crt

@@ -0,0 +1,21 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

scripts/signing/init_signing.sh

@@ -0,0 +1,25 @@
+# USAGE: ./init_signing.sh linuxkit/repo
+
+if [[ -z  $DOCKER_CONTENT_TRUST_ROOT_PASSPHRASE  ]]
+then
+    echo "must set DOCKER_CONTENT_TRUST_ROOT_PASSPHRASE"
+    exit 1
+fi
+
+if [[ -z  $DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE  ]]
+then
+    echo "must set DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE"
+    exit 1
+fi
+
+docker trust signer add justin $1 --key justin.crt
+
+docker trust signer add rolf $1 --key rolf.crt
+
+docker trust signer add ian $1 --key ian.crt --key ian_arm.crt
+
+docker trust signer add avi $1 --key avi.crt --key avi_arm.crt
+
+docker trust signer add riyaz $1 --key riyaz.crt
+
+echo "Successfully set up signing for $1"

scripts/signing/justin.crt

@@ -0,0 +1,22 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

scripts/signing/riyaz.crt

@@ -0,0 +1,21 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

scripts/signing/rolf.crt

@@ -0,0 +1,16 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----