feature: add policy.json support

Signed-off-by: Terry Howe <terrylhowe@gmail.com>

Author: TerryHowe

registry/remote/policy/README.md

@@ -0,0 +1,183 @@
+# Policy Package
+
+The `policy` package provides support for the `containers-policy.json` format used for OCI image signature verification policies.
+
+## Overview
+
+This package implements parsing, validation, and evaluation of container image policies as defined in the [containers-policy.json specification](https://man.archlinux.org/man/containers-policy.json.5.en).
+
+## Features
+
+- **Policy Management**: Load, save, and validate policy configurations
+- **Multiple Transports**: Support for docker, oci, and other transport types
+- **Policy Requirements**:
+  - `insecureAcceptAnything` - Accept any image without verification
+  - `reject` - Reject all images
+  - `signedBy` - Require GPG signature verification (placeholder)
+  - `sigstoreSigned` - Require sigstore signature verification (placeholder)
+- **Scope-based Policies**: Define different policies for different image scopes
+- **Identity Matching**: Support for various identity matching strategies
+
+## Usage
+
+### Creating a Policy
+
+```go
+import "oras.land/oras-go/v2/registry/remote/policy"
+
+// Create a basic policy
+p := &policy.Policy{
+    Default: policy.PolicyRequirements{&policy.Reject{}},
+    Transports: map[policy.TransportName]policy.TransportScopes{
+        policy.TransportDocker: {
+            "": policy.PolicyRequirements{&policy.InsecureAcceptAnything{}},
+        },
+    },
+}
+```
+
+### Loading and Saving Policies
+
+```go
+// Load from default location
+policy, err := policy.LoadDefaultPolicy()
+if err != nil {
+    log.Fatal(err)
+}
+
+// Load from specific path
+policy, err := policy.LoadPolicy("/path/to/policy.json")
+if err != nil {
+    log.Fatal(err)
+}
+
+// Save policy
+err = policy.SavePolicy(p, "/path/to/policy.json")
+if err != nil {
+    log.Fatal(err)
+}
+```
+
+### Evaluating Policies
+
+```go
+import "context"
+
+// Create an evaluator
+evaluator, err := policy.NewEvaluator(p)
+if err != nil {
+    log.Fatal(err)
+}
+
+// Check if an image is allowed
+image := policy.ImageReference{
+    Transport: policy.TransportDocker,
+    Scope:     "docker.io/library/nginx",
+    Reference: "docker.io/library/nginx:latest",
+}
+
+allowed, err := evaluator.IsImageAllowed(context.Background(), image)
+if err != nil {
+    log.Fatal(err)
+}
+
+fmt.Printf("Image allowed: %v\n", allowed)
+```
+
+### Signature Verification Policies
+
+```go
+// GPG signature verification
+signedByReq := &policy.PRSignedBy{
+    KeyType: "GPGKeys",
+    KeyPath: "/path/to/trusted-key.gpg",
+    SignedIdentity: &policy.SignedIdentity{
+        Type: policy.MatchRepository,
+    },
+}
+
+// Sigstore signature verification
+sigstoreReq := &policy.PRSigstoreSigned{
+    KeyPath: "/path/to/cosign.pub",
+    Fulcio: &policy.FulcioConfig{
+        CAPath:       "/path/to/fulcio-ca.pem",
+        OIDCIssuer:   "https://oauth2.sigstore.dev/auth",
+        SubjectEmail: "user@example.com",
+    },
+    RekorPublicKeyPath: "/path/to/rekor.pub",
+    SignedIdentity: &policy.SignedIdentity{
+        Type: policy.MatchRepository,
+    },
+}
+```
+
+## Policy File Format
+
+The policy.json file follows this structure:
+
+```json
+{
+  "default": [
+    {"type": "reject"}
+  ],
+  "transports": {
+    "docker": {
+      "": [
+        {"type": "insecureAcceptAnything"}
+      ],
+      "docker.io/library/nginx": [
+        {"type": "reject"}
+      ]
+    }
+  }
+}
+```
+
+## Default Policy Locations
+
+The package checks for policy files in the following order:
+
+1. `$HOME/.config/containers/policy.json` (user-specific)
+2. `/etc/containers/policy.json` (system-wide)
+
+## Supported Transports
+
+- `docker` - Docker registries
+- `atomic` - Atomic registries
+- `containers-storage` - Local containers storage
+- `dir` - Directory transport
+- `docker-archive` - Docker archive files
+- `docker-daemon` - Docker daemon
+- `oci` - OCI layout
+- `oci-archive` - OCI archive files
+- `sif` - Singularity Image Format
+- `tarball` - Tarball transport
+
+## Identity Matching Types
+
+- `matchExact` - Exact identity match
+- `matchRepoDigestOrExact` - Repository digest or exact match
+- `matchRepository` - Repository match
+- `exactReference` - Exact reference match
+- `exactRepository` - Exact repository match
+- `remapIdentity` - Remap identity with prefix
+
+## Limitations
+
+- The `signedBy` and `sigstoreSigned` requirement types are currently placeholders
+- Full signature verification requires integration with GPG and sigstore libraries
+- Advanced identity matching strategies are defined but not fully implemented
+
+## Testing
+
+Run the tests with:
+
+```bash
+go test ./registry/remote/policy/...
+```
+
+## References
+
+- [containers-policy.json specification](https://man.archlinux.org/man/containers-policy.json.5.en)
+- [OCI Image Spec](https://github.com/opencontainers/image-spec)
+- [OCI Distribution Spec](https://github.com/opencontainers/distribution-spec)

registry/remote/policy/evaluator.go

@@ -0,0 +1,135 @@
+/*
+Copyright The ORAS Authors.
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package policy
+
+import (
+	"context"
+	"fmt"
+)
+
+// ImageReference represents a reference to an image
+type ImageReference struct {
+	// Transport is the transport type (e.g., "docker")
+	Transport TransportName
+	// Scope is the scope within the transport (e.g., "docker.io/library/nginx")
+	Scope string
+	// Reference is the full reference (e.g., "docker.io/library/nginx:latest")
+	Reference string
+}
+
+// Evaluator evaluates policy requirements against image references
+type Evaluator struct {
+	policy *Policy
+}
+
+// NewEvaluator creates a new policy evaluator
+func NewEvaluator(policy *Policy) (*Evaluator, error) {
+	if policy == nil {
+		return nil, fmt.Errorf("policy cannot be nil")
+	}
+
+	if err := policy.Validate(); err != nil {
+		return nil, fmt.Errorf("invalid policy: %w", err)
+	}
+
+	return &Evaluator{
+		policy: policy,
+	}, nil
+}
+
+// IsImageAllowed determines if an image is allowed by the policy
+func (e *Evaluator) IsImageAllowed(ctx context.Context, image ImageReference) (bool, error) {
+	reqs := e.policy.GetRequirementsForImage(image.Transport, image.Scope)
+
+	if len(reqs) == 0 {
+		// No requirements means reject by default for safety
+		return false, fmt.Errorf("no policy requirements found for %s:%s", image.Transport, image.Scope)
+	}
+
+	// All requirements must be satisfied
+	for _, req := range reqs {
+		allowed, err := e.evaluateRequirement(ctx, req, image)
+		if err != nil {
+			return false, fmt.Errorf("failed to evaluate requirement %s: %w", req.Type(), err)
+		}
+		if !allowed {
+			return false, nil
+		}
+	}
+
+	return true, nil
+}
+
+// evaluateRequirement evaluates a single policy requirement
+func (e *Evaluator) evaluateRequirement(ctx context.Context, req PolicyRequirement, image ImageReference) (bool, error) {
+	switch r := req.(type) {
+	case *InsecureAcceptAnything:
+		return e.evaluateInsecureAcceptAnything(ctx, r, image)
+	case *Reject:
+		return e.evaluateReject(ctx, r, image)
+	case *PRSignedBy:
+		return e.evaluateSignedBy(ctx, r, image)
+	case *PRSigstoreSigned:
+		return e.evaluateSigstoreSigned(ctx, r, image)
+	default:
+		return false, fmt.Errorf("unknown requirement type: %T", req)
+	}
+}
+
+// evaluateInsecureAcceptAnything always accepts the image
+func (e *Evaluator) evaluateInsecureAcceptAnything(ctx context.Context, req *InsecureAcceptAnything, image ImageReference) (bool, error) {
+	return true, nil
+}
+
+// evaluateReject always rejects the image
+func (e *Evaluator) evaluateReject(ctx context.Context, req *Reject, image ImageReference) (bool, error) {
+	return false, nil
+}
+
+// evaluateSignedBy evaluates a signedBy requirement
+// Note: This is a placeholder implementation. Full signature verification
+// would require integration with GPG/signing libraries.
+func (e *Evaluator) evaluateSignedBy(ctx context.Context, req *PRSignedBy, image ImageReference) (bool, error) {
+	// TODO: Implement actual signature verification
+	// This would involve:
+	// 1. Fetching the image manifest and signatures
+	// 2. Verifying signatures using the provided GPG keys
+	// 3. Checking identity matching rules
+	return false, fmt.Errorf("signedBy verification not yet implemented")
+}
+
+// evaluateSigstoreSigned evaluates a sigstoreSigned requirement
+// Note: This is a placeholder implementation. Full signature verification
+// would require integration with sigstore libraries.
+func (e *Evaluator) evaluateSigstoreSigned(ctx context.Context, req *PRSigstoreSigned, image ImageReference) (bool, error) {
+	// TODO: Implement actual sigstore verification
+	// This would involve:
+	// 1. Fetching the image manifest and sigstore signatures
+	// 2. Verifying signatures using sigstore
+	// 3. Optionally verifying Fulcio certificates and Rekor transparency log
+	// 4. Checking identity matching rules
+	return false, fmt.Errorf("sigstoreSigned verification not yet implemented")
+}
+
+// ShouldAcceptImage is a convenience function that returns true if the image is allowed
+func ShouldAcceptImage(ctx context.Context, policy *Policy, image ImageReference) (bool, error) {
+	evaluator, err := NewEvaluator(policy)
+	if err != nil {
+		return false, err
+	}
+
+	return evaluator.IsImageAllowed(ctx, image)
+}