Package dev.sigstore.proto.bundle.v1

Class VerificationMaterial.Builder

  • All Implemented Interfaces:
    com.google.protobuf.Message.Builder, com.google.protobuf.MessageLite.Builder, com.google.protobuf.MessageLiteOrBuilder, com.google.protobuf.MessageOrBuilder, VerificationMaterialOrBuilder, java.lang.Cloneable
    Enclosing class:
    VerificationMaterial
    public static final class VerificationMaterial.Builder
extends com.google.protobuf.GeneratedMessage.Builder<VerificationMaterial.Builder>
implements VerificationMaterialOrBuilder
     VerificationMaterial captures details on the materials used to verify
 signatures. This message may be embedded in a DSSE envelope as a signature
 extension. Specifically, the `ext` field of the extension will expect this
 message when the signature extension is for Sigstore. This is identified by
 the `kind` field in the extension, which must be set to
 application/vnd.dev.sigstore.verificationmaterial;version=0.1 for Sigstore.
 When used as a DSSE extension, if the `public_key` field is used to indicate
 the key identifier, it MUST match the `keyid` field of the signature the
 extension is attached to.
    Protobuf type dev.sigstore.bundle.v1.VerificationMaterial

    • Method Detail

      • getDescriptor

        public static final com.google.protobuf.Descriptors.Descriptor getDescriptor()

      • internalGetFieldAccessorTable

        protected com.google.protobuf.GeneratedMessage.FieldAccessorTable internalGetFieldAccessorTable()
        Specified by:
        internalGetFieldAccessorTable in class com.google.protobuf.GeneratedMessage.Builder<VerificationMaterial.Builder>

      • clear

        public VerificationMaterial.Builder clear()
        Specified by:
        clear in interface com.google.protobuf.Message.Builder
        Specified by:
        clear in interface com.google.protobuf.MessageLite.Builder
        Overrides:
        clear in class com.google.protobuf.GeneratedMessage.Builder<VerificationMaterial.Builder>

      • getDescriptorForType

        public com.google.protobuf.Descriptors.Descriptor getDescriptorForType()
        Specified by:
        getDescriptorForType in interface com.google.protobuf.Message.Builder
        Specified by:
        getDescriptorForType in interface com.google.protobuf.MessageOrBuilder
        Overrides:
        getDescriptorForType in class com.google.protobuf.GeneratedMessage.Builder<VerificationMaterial.Builder>

      • getDefaultInstanceForType

        public VerificationMaterial getDefaultInstanceForType()
        Specified by:
        getDefaultInstanceForType in interface com.google.protobuf.MessageLiteOrBuilder
        Specified by:
        getDefaultInstanceForType in interface com.google.protobuf.MessageOrBuilder

      • build

        public VerificationMaterial build()
        Specified by:
        build in interface com.google.protobuf.Message.Builder
        Specified by:
        build in interface com.google.protobuf.MessageLite.Builder

      • buildPartial

        public VerificationMaterial buildPartial()
        Specified by:
        buildPartial in interface com.google.protobuf.Message.Builder
        Specified by:
        buildPartial in interface com.google.protobuf.MessageLite.Builder

      • isInitialized

        public final boolean isInitialized()
        Specified by:
        isInitialized in interface com.google.protobuf.MessageLiteOrBuilder
        Overrides:
        isInitialized in class com.google.protobuf.GeneratedMessage.Builder<VerificationMaterial.Builder>

      • mergeFrom

        public VerificationMaterial.Builder mergeFrom​(com.google.protobuf.CodedInputStream input,
                                              com.google.protobuf.ExtensionRegistryLite extensionRegistry)
                                       throws java.io.IOException
        Specified by:
        mergeFrom in interface com.google.protobuf.Message.Builder
        Specified by:
        mergeFrom in interface com.google.protobuf.MessageLite.Builder
        Overrides:
        mergeFrom in class com.google.protobuf.AbstractMessage.Builder<VerificationMaterial.Builder>
        Throws:
        java.io.IOException

      • hasPublicKey

        public boolean hasPublicKey()
        .dev.sigstore.common.v1.PublicKeyIdentifier public_key = 1 [(.google.api.field_behavior) = REQUIRED];
        Specified by:
        hasPublicKey in interface VerificationMaterialOrBuilder
        Returns:
        Whether the publicKey field is set.

      • clearPublicKey

        public VerificationMaterial.Builder clearPublicKey()
        .dev.sigstore.common.v1.PublicKeyIdentifier public_key = 1 [(.google.api.field_behavior) = REQUIRED];

      • getPublicKeyBuilder

        public PublicKeyIdentifier.Builder getPublicKeyBuilder()
        .dev.sigstore.common.v1.PublicKeyIdentifier public_key = 1 [(.google.api.field_behavior) = REQUIRED];

      • hasX509CertificateChain

        public boolean hasX509CertificateChain()
        .dev.sigstore.common.v1.X509CertificateChain x509_certificate_chain = 2 [(.google.api.field_behavior) = REQUIRED];
        Specified by:
        hasX509CertificateChain in interface VerificationMaterialOrBuilder
        Returns:
        Whether the x509CertificateChain field is set.

      • clearX509CertificateChain

        public VerificationMaterial.Builder clearX509CertificateChain()
        .dev.sigstore.common.v1.X509CertificateChain x509_certificate_chain = 2 [(.google.api.field_behavior) = REQUIRED];

      • getX509CertificateChainBuilder

        public X509CertificateChain.Builder getX509CertificateChainBuilder()
        .dev.sigstore.common.v1.X509CertificateChain x509_certificate_chain = 2 [(.google.api.field_behavior) = REQUIRED];

      • hasCertificate

        public boolean hasCertificate()
        .dev.sigstore.common.v1.X509Certificate certificate = 5 [(.google.api.field_behavior) = REQUIRED];
        Specified by:
        hasCertificate in interface VerificationMaterialOrBuilder
        Returns:
        Whether the certificate field is set.

      • clearCertificate

        public VerificationMaterial.Builder clearCertificate()
        .dev.sigstore.common.v1.X509Certificate certificate = 5 [(.google.api.field_behavior) = REQUIRED];

      • getCertificateBuilder

        public X509Certificate.Builder getCertificateBuilder()
        .dev.sigstore.common.v1.X509Certificate certificate = 5 [(.google.api.field_behavior) = REQUIRED];

      • getTlogEntriesList

        public java.util.List<TransparencyLogEntry> getTlogEntriesList()
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;
        Specified by:
        getTlogEntriesList in interface VerificationMaterialOrBuilder

      • getTlogEntriesCount

        public int getTlogEntriesCount()
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;
        Specified by:
        getTlogEntriesCount in interface VerificationMaterialOrBuilder

      • getTlogEntries

        public TransparencyLogEntry getTlogEntries​(int index)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;
        Specified by:
        getTlogEntries in interface VerificationMaterialOrBuilder

      • setTlogEntries

        public VerificationMaterial.Builder setTlogEntries​(int index,
                                                   TransparencyLogEntry value)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • setTlogEntries

        public VerificationMaterial.Builder setTlogEntries​(int index,
                                                   TransparencyLogEntry.Builder builderForValue)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • addTlogEntries

        public VerificationMaterial.Builder addTlogEntries​(TransparencyLogEntry value)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • addTlogEntries

        public VerificationMaterial.Builder addTlogEntries​(int index,
                                                   TransparencyLogEntry value)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • addTlogEntries

        public VerificationMaterial.Builder addTlogEntries​(TransparencyLogEntry.Builder builderForValue)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • addTlogEntries

        public VerificationMaterial.Builder addTlogEntries​(int index,
                                                   TransparencyLogEntry.Builder builderForValue)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • addAllTlogEntries

        public VerificationMaterial.Builder addAllTlogEntries​(java.lang.Iterable<? extends TransparencyLogEntry> values)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • clearTlogEntries

        public VerificationMaterial.Builder clearTlogEntries()
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • removeTlogEntries

        public VerificationMaterial.Builder removeTlogEntries​(int index)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • getTlogEntriesBuilder

        public TransparencyLogEntry.Builder getTlogEntriesBuilder​(int index)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • getTlogEntriesOrBuilder

        public TransparencyLogEntryOrBuilder getTlogEntriesOrBuilder​(int index)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;
        Specified by:
        getTlogEntriesOrBuilder in interface VerificationMaterialOrBuilder

      • getTlogEntriesOrBuilderList

        public java.util.List<? extends TransparencyLogEntryOrBuilder> getTlogEntriesOrBuilderList()
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;
        Specified by:
        getTlogEntriesOrBuilderList in interface VerificationMaterialOrBuilder

      • addTlogEntriesBuilder

        public TransparencyLogEntry.Builder addTlogEntriesBuilder()
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • addTlogEntriesBuilder

        public TransparencyLogEntry.Builder addTlogEntriesBuilder​(int index)
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • getTlogEntriesBuilderList

        public java.util.List<TransparencyLogEntry.Builder> getTlogEntriesBuilderList()
         An inclusion proof and an optional signed timestamp from the log.
 Client verification libraries MAY provide an option to support v0.1
 bundles for backwards compatibility, which may contain an inclusion
 promise and not an inclusion proof. In this case, the client MUST
 validate the promise.
 Verifiers SHOULD NOT allow v0.1 bundles if they're used in an
 ecosystem which never produced them.
        repeated .dev.sigstore.rekor.v1.TransparencyLogEntry tlog_entries = 3;

      • hasTimestampVerificationData

        public boolean hasTimestampVerificationData()
         Timestamp may also come from
 tlog_entries.inclusion_promise.signed_entry_timestamp.
        .dev.sigstore.bundle.v1.TimestampVerificationData timestamp_verification_data = 4;
        Specified by:
        hasTimestampVerificationData in interface VerificationMaterialOrBuilder
        Returns:
        Whether the timestampVerificationData field is set.

      • setTimestampVerificationData

        public VerificationMaterial.Builder setTimestampVerificationData​(TimestampVerificationData value)
         Timestamp may also come from
 tlog_entries.inclusion_promise.signed_entry_timestamp.
        .dev.sigstore.bundle.v1.TimestampVerificationData timestamp_verification_data = 4;

      • setTimestampVerificationData

        public VerificationMaterial.Builder setTimestampVerificationData​(TimestampVerificationData.Builder builderForValue)
         Timestamp may also come from
 tlog_entries.inclusion_promise.signed_entry_timestamp.
        .dev.sigstore.bundle.v1.TimestampVerificationData timestamp_verification_data = 4;

      • mergeTimestampVerificationData

        public VerificationMaterial.Builder mergeTimestampVerificationData​(TimestampVerificationData value)
         Timestamp may also come from
 tlog_entries.inclusion_promise.signed_entry_timestamp.
        .dev.sigstore.bundle.v1.TimestampVerificationData timestamp_verification_data = 4;

      • clearTimestampVerificationData

        public VerificationMaterial.Builder clearTimestampVerificationData()
         Timestamp may also come from
 tlog_entries.inclusion_promise.signed_entry_timestamp.
        .dev.sigstore.bundle.v1.TimestampVerificationData timestamp_verification_data = 4;

      • getTimestampVerificationDataBuilder

        public TimestampVerificationData.Builder getTimestampVerificationDataBuilder()
         Timestamp may also come from
 tlog_entries.inclusion_promise.signed_entry_timestamp.
        .dev.sigstore.bundle.v1.TimestampVerificationData timestamp_verification_data = 4;