spec: add spec for sign/verify an arbitrary file using Notation

specs/commandline/sign.md

@@ -4,7 +4,8 @@
 
 Use `notation sign` to sign artifacts.
 
-Signs an OCI artifact stored in the registry. Always sign artifact using digest(`@sha256:...`) rather than a tag(`:v1`) because tags are mutable and a tag reference can point to a different artifact than the one signed. If a tag is used, notation resolves the tag to the `digest` before signing.
+### Sign an OCI artifact stored in registry
+Always sign artifact using digest(`@sha256:...`) rather than a tag(`:v1`) because tags are mutable and a tag reference can point to a different artifact than the one signed. If a tag is used, notation resolves the tag to the `digest` before signing.
 
 Upon successful signing, the generated signature is pushed to the registry and associated with the signed OCI artifact. The output message is printed out as following:
 
@@ -19,6 +20,15 @@ Warning: Always sign the artifact using digest(`@sha256:...`) rather than a tag(
 Successfully signed <registry>/<repository>@<digest>
 ```
 
+### Sign an arbitrary file stored in file system
+The file content, i.e. the file blob, is signed.
+
+Upon successful signing, the generated signature is stored to user specified signature path in file system. The output message is printed out as following:
+
+```text
+Successfully signed <target_file> and created signature at <signature_file>
+```
+
 ## Outline
 
 ```text
@@ -31,6 +41,7 @@ Flags:
        --allow-referrers-api        [Experimental] use the Referrers API to store signatures in the registry, if not supported (returns 404), fallback to the Referrers tag schema
   -d,  --debug                      debug mode
   -e,  --expiry duration            optional expiry that provides a "best by use" time for the artifact. The duration is specified in minutes(m) and/or hours(h). For example: 12h, 30m, 3h20m
+       --file                       enable signing a file's content, if set, the reference argument is the file path in the file system (required if --signature is set)
   -h,  --help                       help for sign
        --id string                  key id (required if --plugin is set). This is mutually exclusive with the --key flag
        --insecure-registry          use HTTP protocol while connecting to registries. Should be used only for testing
@@ -39,6 +50,7 @@ Flags:
   -p,  --password string            password for registry operations (default to $NOTATION_PASSWORD if not specified)
        --plugin string              signing plugin name. This is mutually exclusive with the --key flag
        --plugin-config stringArray  {key}={value} pairs that are passed as it is to a plugin, refer plugin's documentation to set appropriate values.
+       --signature string           output path of generated signature when signing a file, can only be used when --file is set
        --signature-format string    signature envelope format, options: "jws", "cose" (default "jws")
   -u,  --username string            username for registry operations (default to $NOTATION_USERNAME if not specified)
   -m,  --user-metadata stringArray  {key}={value} pairs that are added to the signature payload
@@ -153,6 +165,30 @@ Warning: Always sign the artifact using digest(`@sha256:...`) rather than a tag(
 Successfully signed localhost:5000/net-monitor@sha256:b94d27b9934d3e08a52e52d7da7dabfac484efe37a5380ee9088f7ace2efcde9
 ```
 
+### Sign an arbitrary file located in file system
+Notation supports signing a file located in user's file system. The file's content (blob) gets signed and the generated signature is stored in the same file system.
+```shell
+# Prerequisites:
+# A default signing key is configured using CLI "notation key"
+
+# Use flag "--file" to enable signing a file
+# The generated signature is saved at the same dir as the target file with name
+# <target_file>.sig
+notation sign --file <target_file_path>
+
+# Use flag "--file" to enable signing a file
+# Use flag "--signature" to specify path where the generated signature is stored
+notation sign --file --signature <signature_path> <target_file_path>
+```
+Examples of successful signing:
+```console
+$ notation sign --file ./myFile.txt 
+Successfully signed ./myFile.txt and created signature at ./myFile.sig
+
+$ notation sign --file --signature ./mySignature.sig ./myFile.txt 
+Successfully signed ./myFile.txt and created signature at ./mySignature.sig
+```
+
 ### [Experimental] Sign container images stored in OCI layout directory
 
 Container images can be stored in OCI image Layout defined in spec [OCI image layout][oci-image-layout]. It is a directory structure that contains files and folders. The OCI image layout could be a tarball or a directory in the filesystem. For example, a file named `hello-world.tar` or a directory named `hello-world`. Notation only supports signing images stored in OCI layout directory for now. Users can reference an image in the layout using either tags, or the exact digest. For example, use `hello-world:v1` or `hello-world@sha256xxx` to reference the image in OCI layout directory named `hello-world`.

specs/commandline/verify.md

@@ -2,6 +2,7 @@
 
 ## Description
 
+### Verify an OCI artifact stored in registry
 Use `notation verify` command to verify signatures associated with the artifact. Signature verification succeeds if verification succeeds for at least one of the signatures associated with the artifact. Upon successful verification, the output message is printed out as follows:
 
 ```text
@@ -26,6 +27,20 @@ KEY    VALUE
 <key>  <value>
 ```
 
+### Verify an arbitrary file stored in file system
+Verify the file content (blob) against signatures stored in file system. Upon successful verification, the output message is printed out as follows:
+
+```text
+Successfully verified <target_file> with signature <signature_file>
+```
+
+### Verify an arbitrary file stored in registry
+Verify the file content (blob) against signatures stored in registry. Upon successful verification, the output message is printed out as follows:
+
+```text
+Successfully verified signature for <registry>/<repository>@<digest>
+```
+
 ## Outline
 
 ```text
@@ -37,14 +52,16 @@ Usage:
 Flags:
        --allow-referrers-api         [Experimental] use the Referrers API to verify signatures, if not supported (returns 404), fallback to the Referrers tag schema
   -d,  --debug                       debug mode
+       --file                        enable verifying a file, if set, the reference argument is the file path or full URI reference of the file artifact in registry (required if --signature is set)
   -h,  --help                        help for verify
        --insecure-registry           use HTTP protocol while connecting to registries. Should be used only for testing
        --max-signatures int          maximum number of signatures to evaluate or examine (default 100)
        --oci-layout                  [Experimental] verify the artifact stored as OCI image layout
   -p,  --password string             password for registry operations (default to $NOTATION_PASSWORD if not specified)
        --plugin-config stringArray   {key}={value} pairs that are passed as it is to a plugin, if the verification is associated with a verification plugin, refer plugin documentation to set appropriate values
-       --scope string                [Experimental] set trust policy scope for artifact verification, required and can only be used when flag "--oci-layout" is set
+       --scope string                [Experimental] set trust policy scope for artifact verification, required when flag "--oci-layout" is set, can only be used when "--oci-layout" or "--file" is set
   -u,  --username string             username for registry operations (default to $NOTATION_USERNAME if not specified)
+       --signature stringArray       path of signatures when verifying a file, required and used if and only if the target file is stored in file system
   -m,  --user-metadata stringArray   user defined {key}={value} pairs that must be present in the signature for successful verification if provided
   -v,  --verbose                     verbose mode
 ```
@@ -173,6 +190,48 @@ Warning:  Always verify the artifact using digest(@sha256:...) rather than a tag
 Successfully verified signature for localhost:5000/net-monitor@sha256:b94d27b9934d3e08a52e52d7da7dabfac484efe37a5380ee9088f7ace2efcde9
 ```
 
+### Verify an arbitrary file located in OCI-compliant registry
+A user wants to verify a file stored as an OCI artifact in an OCI-compliant registry.
+```shell
+# Prerequisites: Signatures are stored in the registry referencing the file artifact
+
+# Use flag "--file" to enable verifying a file
+notation verify --file localhost:5000/myFile@sha256:b94d27b9934d3e08a52e52d7da7dabfac484efe37a5380ee9088f7ace2efcde9
+```
+
+An example of output messages for a successful verification:
+
+```text
+Successfully verified signature for localhost:5000/myFile@sha256:b94d27b9934d3e08a52e52d7da7dabfac484efe37a5380ee9088f7ace2efcde9
+```
+
+### Verify an arbitrary file located in file system
+A verifier wants to verify a file against its signatures located in file system.
+
+Trust policy to be used follows the rule below:
+1. User MAY pass in a trust policy scope via `--scope` flag. The value MUST follow Notation's trust policy [spec](https://github.com/notaryproject/specifications/blob/main/specs/trust-store-trust-policy.md#registry-scopes-constraints). If the user specified trust policy does not exist in Notation's `trustpolicy.json` (use command `notation policy show` to check existence), then
+the [global trust policy](https://github.com/notaryproject/specifications/blob/main/specs/trust-store-trust-policy.md#registry-scopes-constraints) is used.
+2. If user ignores the `--scope` flag, then the [global trust policy](https://github.com/notaryproject/specifications/blob/main/specs/trust-store-trust-policy.md#registry-scopes-constraints) is used as default.
+```shell
+# Prerequisites: Both target file and signatures are stored in user's file system
+
+# Use flag "--file" to enable verifying a file
+# Use flag "--signature" to speicfy path where the signatures are stored
+# The global trust policy is used by default
+notation verify --file --signature ./mySignature1.sig --signature ./mySignature2.sig ./myFile.txt
+
+export NOTATION_EXPERIMENTAL=1
+# Use flag "--file" to enable verifying a file
+# Use flag "--signature" to speicfy path where the signatures are stored
+# Trust policy with scope "example/myPolicy" is used, if it does not exist, the global trust policy is used
+notation verify --file --signature ./mySignature.sig --scope example/myPolicy ./myFile.txt
+```
+An example of output messages for a successful verification:
+
+```text
+Successfully verified ./myFile.txt with signature ./mySignature.sig
+```
+
 ### [Experimental] Verify container images in OCI layout directory
 
 Users should configure trust policy properly before verifying artifacts in OCI layout directory. According to trust policy specification, `registryScopes` property of trust policy configuration determines which trust policy is applicable for the given artifact. For example, an image stored in a remote registry is referenced by "localhost:5000/net-monitor:v1". In order to verify the image, the value of `registryScopes` should contain "localhost:5000/net-monitor", which is the repository URL of the image. However, the reference to the image stored in OCI layout directory doesn't contain repository URL information. Users can set `registryScopes` to the URL that the image is supposed to be stored in the registry, and then use flag `--scope` for `notation verify` command to determine which trust policy is used for verification. Here is an example of trust policy configured for image `hello-world:v1`: