moby--moby/vendor/src/github.com/docker/notary/client/repo_pkcs11.go

// +build pkcs11

package client

import (
	"fmt"
	"net/http"

	"github.com/docker/notary/passphrase"
	"github.com/docker/notary/trustmanager"
	"github.com/docker/notary/trustmanager/yubikey"
)

// NewNotaryRepository is a helper method that returns a new notary repository.
// It takes the base directory under where all the trust files will be stored
// (usually ~/.docker/trust/).
func NewNotaryRepository(baseDir, gun, baseURL string, rt http.RoundTripper,
	retriever passphrase.Retriever) (
	*NotaryRepository, error) {

	fileKeyStore, err := trustmanager.NewKeyFileStore(baseDir, retriever)
	if err != nil {
		return nil, fmt.Errorf("failed to create private key store in directory: %s", baseDir)
	}

	keyStores := []trustmanager.KeyStore{fileKeyStore}
	yubiKeyStore, _ := yubikey.NewYubiKeyStore(fileKeyStore, retriever)
	if yubiKeyStore != nil {
		keyStores = []trustmanager.KeyStore{yubiKeyStore, fileKeyStore}
	}

	return repositoryFromKeystores(baseDir, gun, baseURL, rt, keyStores)
}
update notary vendors Signed-off-by: Jessica Frazelle <acidburn@docker.com> 2015-10-30 17:31:02 -07:00			`// +build pkcs11`

			`package client`

			`import (`
			`"fmt"`
			`"net/http"`

			`"github.com/docker/notary/passphrase"`
			`"github.com/docker/notary/trustmanager"`
			`"github.com/docker/notary/trustmanager/yubikey"`
			`)`

			`// NewNotaryRepository is a helper method that returns a new notary repository.`
			`// It takes the base directory under where all the trust files will be stored`
			`// (usually ~/.docker/trust/).`
			`func NewNotaryRepository(baseDir, gun, baseURL string, rt http.RoundTripper,`
Notary delegation integration into docker Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2015-12-18 18:47:35 -08:00			`retriever passphrase.Retriever) (`
			`*NotaryRepository, error) {`
update notary vendors Signed-off-by: Jessica Frazelle <acidburn@docker.com> 2015-10-30 17:31:02 -07:00
			`fileKeyStore, err := trustmanager.NewKeyFileStore(baseDir, retriever)`
			`if err != nil {`
			`return nil, fmt.Errorf("failed to create private key store in directory: %s", baseDir)`
			`}`

Notary delegation integration into docker Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2015-12-18 18:47:35 -08:00			`keyStores := []trustmanager.KeyStore{fileKeyStore}`
update notary vendors Signed-off-by: Jessica Frazelle <acidburn@docker.com> 2015-10-30 17:31:02 -07:00			`yubiKeyStore, _ := yubikey.NewYubiKeyStore(fileKeyStore, retriever)`
Notary delegation integration into docker Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2015-12-18 18:47:35 -08:00			`if yubiKeyStore != nil {`
revendor notary and wrap friendlier error messages Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2016-01-14 12:21:55 -08:00			`keyStores = []trustmanager.KeyStore{yubiKeyStore, fileKeyStore}`
update notary vendors Signed-off-by: Jessica Frazelle <acidburn@docker.com> 2015-10-30 17:31:02 -07:00			`}`

Notary delegation integration into docker Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2015-12-18 18:47:35 -08:00			`return repositoryFromKeystores(baseDir, gun, baseURL, rt, keyStores)`
update notary vendors Signed-off-by: Jessica Frazelle <acidburn@docker.com> 2015-10-30 17:31:02 -07:00			`}`