This is version 0.1 of this specification.
To faciliate local control over image resolution, this specification defines a ref-engine discovery protocol which consumers and their local sysadmins MAY use to provide local reference engine suggestions for particular image names.
Having retrieved a set of reference engines (via this and other protocols), consumers can use those ref engines to recover a set of Merkle roots potentially associated with a given image name. Consumers who choose not to support this specification can safely ignore the remainder of this document. Consumers who choose to support this specification MAY attempt to discover and use ref engines via other channels, and only fall back to this protocol if those ref engines do not return a satisfactory Merkle root.
This section defines the application/vnd.oci.ref-engines.v1+json media type.
Content of this type MUST be a JSON object, as defined in RFC 7159 section 4.
The object MAY include a refEngines entry.
If set, the refEngines entry MUST be an array.
Each entry in the refEngines array MUST be an objects with at least a protocol entry specifying the ref-engine protocol.
Consumers SHOULD ignore entries which declare unsupported protocol values.
The order of entries in the array is not significant.
The ref-engine discovery service MAY also include casEngines entry if it wants to supplement suggestions made by the ref engines.
If set, the casEngines entry MUST be an array.
Each entry in the casEngines array MUST be an objects with at least a protocol entry specifying the CAS-engine protocol.
Consumers SHOULD ignore entries which declare unsupported protocol values.
The order of entries in the array is not significant.
This section defines the application/vnd.oci.regexp-ref-engines.v1+json media type.
Content of this type MUST be a JSON object, as defined in RFC 7159 section 4.
Keys MUST be Extended Regular Expressions, as defined in IEEE Std 1003.1-2008.
Values MUST be JSON objects that conform to the application/vnd.oci.ref-engines.v1+json media type.
For a given image name, consumers SHOULD treat all keys that match the image name as valid.
When multiple keys match the image name, consumers SHOULD prefer the regexp with the longest length.
When multiple keys of the same length match the image name, consumers SHOULD prefer the regexp which sorts earlier according to LC_COLLATE in the POSIX locale, as defined in IEEE Std 1003.1-2008.
Consumers discovering ref engines for an image name SHOULD lookup the name in $XDG_CONFIG_DIRS/oci-discovery/ref-engine-discovery.json, as defined in the XDG Base Directory Specification 0.8.
When oci-discovery/ref-engine-discovery.json is located under multiple base directories, consumers SHOULD merge the configurations.
When merging multiple application/vnd.oci.regexp-ref-engines.v1+json objects, the result MUST be another application/vnd.oci.regexp-ref-engines.v1+json object.
For each root key in any source configuration, the merged configuration MUST have a root entry for that key, the value of which MUST match the value for that key from the most-preferred source configuration with an entry for that key.
$ cat ~/.config/oci-discovery/ref-engine-discovery.json
{
"^[^/]*example\.com/.*$": {
"refEngines": [
{
"protocol": "oci-index-template-v1",
"uri": "https://{host}/ref/{name}"
}
]
},
"^a\.example\.com/app#.*$": {
"refEngines": [
{
"protocol": "oci-index-template-v1",
"uri": "https://{host}/oci-ref/{name}"
}
],
"casEngines": [
{
"protocol": "oci-cas-template-v1",
"uri": "https://a.example.com/cas/{algorithm}/{encoded:2}/{encoded}"
}
]
}
}
The oci-index-template-v1 protocol is registered.
The oci-cas-template-v1 protocol is registered.
With this configuration, an image named a.example.com/app#1.0 will match both entries.
A ^a\.example\.com/app#.*$ is longer (24 characters to ^[^/]*example\.com/.*$'s 22), so it is the preferred match.
A client would check the oci-index-template-v1 ref engine at https://{host}/ref/{name} first, and then fall back to the oci-index-template-v1 ref engine at https://{host}/oci-ref/{name} if further Merkle roots were needed.