uber · hweawer · Feb 16, 2026 · Feb 16, 2026 · Feb 16, 2026 · Feb 16, 2026
diff --git a/lib/dockerregistry/storage_driver.go b/lib/dockerregistry/storage_driver.go
@@ -147,7 +147,8 @@ func NewReadWriteStorageDriver(
 	config Config,
 	cas *store.CAStore,
 	transferer transfer.ImageTransferer,
-	verification func(repo string, digest core.Digest, blob store.FileReader) (SignatureVerificationDecision, error)) *KrakenStorageDriver {
+	verification func(repo string, digest core.Digest, blob store.FileReader) (SignatureVerificationDecision, error),
+) *KrakenStorageDriver {
 	return &KrakenStorageDriver{
 		config:     config,
 		transferer: transferer,
@@ -162,7 +163,8 @@ func NewReadOnlyStorageDriver(
 	config Config,
 	bs BlobStore,
 	transferer transfer.ImageTransferer,
-	verification func(repo string, digest core.Digest, blob store.FileReader) (SignatureVerificationDecision, error)) *KrakenStorageDriver {
+	verification func(repo string, digest core.Digest, blob store.FileReader) (SignatureVerificationDecision, error),
+) *KrakenStorageDriver {
 	return &KrakenStorageDriver{
 		config:     config,
 		transferer: transferer,

diff --git a/tools/bin/puller/pull.go b/tools/bin/puller/pull.go
@@ -29,6 +29,7 @@ import (
 	"github.com/docker/distribution/manifest/schema2"
 	"github.com/opencontainers/go-digest"
 	"github.com/uber/kraken/utils/closers"
+	"github.com/uber/kraken/utils/dockerutil"
 	"github.com/uber/kraken/utils/errutil"
 	"github.com/uber/kraken/utils/log"
 )
@@ -100,10 +101,8 @@ func pullManifest(client http.Client, source string, name string, reference stri
 	if err != nil {
 		return nil, err
 	}
-	// Add `Accept` header to indicate schema2 is supported
-	req.Header.Add("Accept", schema2.MediaTypeManifest)
+	req.Header.Add("Accept", fmt.Sprintf("%s,%s", schema2.MediaTypeManifest, "application/vnd.oci.image.manifest.v1+json"))
 	resp, err := client.Do(req)
-
 	if err != nil {
 		return nil, err
 	}
@@ -117,14 +116,16 @@ func pullManifest(client http.Client, source string, name string, reference stri
 		return nil, fmt.Errorf("server returned %v", resp.Status)
 	}
 
-	version := resp.Header.Get("Content-Type")
 	body, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return nil, err
 	}
-	manifest, _, err := distribution.UnmarshalManifest(version, body)
+
+	// Use dockerutil.ParseManifest which handles Docker v2, v2 list, and OCI formats
+	// This avoids issues with Content-Type headers and schema1 signature verification
+	manifest, _, err := dockerutil.ParseManifest(bytes.NewReader(body))
 	if err != nil {
-		return nil, err
+		return nil, fmt.Errorf("parse manifest: %w", err)
 	}
 
 	return manifest, nil

diff --git a/utils/dockerutil/dockerutil.go b/utils/dockerutil/dockerutil.go
@@ -14,19 +14,22 @@
 package dockerutil
 
 import (
+	"encoding/json"
 	"errors"
 	"fmt"
 	"io"
 
 	"github.com/docker/distribution"
 	"github.com/docker/distribution/manifest/manifestlist"
 	"github.com/docker/distribution/manifest/schema2"
+	"github.com/opencontainers/go-digest"
 	"github.com/uber/kraken/core"
 )
 
 const (
 	_v2ManifestType     = "application/vnd.docker.distribution.manifest.v2+json"
 	_v2ManifestListType = "application/vnd.docker.distribution.manifest.list.v2+json"
+	_ociManifestType    = "application/vnd.oci.image.manifest.v1+json"
 )
 
 func ParseManifest(r io.Reader) (distribution.Manifest, core.Digest, error) {
@@ -35,13 +38,20 @@ func ParseManifest(r io.Reader) (distribution.Manifest, core.Digest, error) {
 		return nil, core.Digest{}, fmt.Errorf("read: %s", err)
 	}
 
+	// Try Docker v2 manifest first
 	manifest, d, err := ParseManifestV2(b)
 	if err == nil {
 		return manifest, d, err
 	}
 
-	// Retry with v2 manifest list.
-	return ParseManifestV2List(b)
+	// Try Docker v2 manifest list
+	manifest, d, err = ParseManifestV2List(b)
+	if err == nil {
+		return manifest, d, err
+	}
+
+	// Try OCI manifest v1 (same structure as Docker v2)
+	return ParseOCIManifest(b)
 }
 
 // ParseManifestV2 returns a parsed v2 manifest and its digest.
@@ -99,6 +109,85 @@ func GetManifestReferences(manifest distribution.Manifest) ([]core.Digest, error
 	return refs, nil
 }
 
+// ParseOCIManifest parses an OCI image manifest v1.
+// OCI manifests have the same structure as Docker v2 manifests, so we can parse them similarly.
+func ParseOCIManifest(bytes []byte) (distribution.Manifest, core.Digest, error) {
+	// First, try to parse as Docker v2 manifest (they have the same structure)
+	// The Docker Distribution library might accept it if we use schema2.MediaTypeManifest
+	manifest, desc, err := distribution.UnmarshalManifest(schema2.MediaTypeManifest, bytes)
+	if err == nil {
+		// Verify it's actually a schema2 manifest
+		if _, ok := manifest.(*schema2.DeserializedManifest); ok {
+			d, err := core.ParseSHA256Digest(string(desc.Digest))
+			if err != nil {
+				return nil, core.Digest{}, fmt.Errorf("parse digest: %s", err)
+			}
+			return manifest, d, nil
-			return manifest, d, nil
+			return manifest, d, nil
+		} else {
+			// If UnmarshalManifest succeeds but returns a non-schema2 manifest,
+			// treat this as an unsupported type for Docker v2 and fall back to
+			// manual OCI parsing below. This is intentional to avoid silently
+			// accepting an unexpected manifest representation.
-			return manifest, d, nil
+			return manifest, d, nil
+		} else {
+			// If UnmarshalManifest succeeds but returns a non-schema2 manifest,
+			// treat this as an unsupported type for Docker v2 and fall back to
+			// manual OCI parsing below. This is intentional to avoid silently
+			// accepting an unexpected manifest representation.
+		}
+	}
+
+	// If that fails, parse manually by checking the mediaType in the JSON
-	// First, try to parse as Docker v2 manifest (they have the same structure)
-	// The Docker Distribution library might accept it if we use schema2.MediaTypeManifest
-	manifest, desc, err := distribution.UnmarshalManifest(schema2.MediaTypeManifest, bytes)
-	if err == nil {
-		// Verify it's actually a schema2 manifest
-		if _, ok := manifest.(*schema2.DeserializedManifest); ok {
-			d, err := core.ParseSHA256Digest(string(desc.Digest))
-			if err != nil {
-				return nil, core.Digest{}, fmt.Errorf("parse digest: %s", err)
-			}
-			return manifest, d, nil
-		}
-	}
-
-	// If that fails, parse manually by checking the mediaType in the JSON
+	// Parse by checking the mediaType in the JSON
-	// First, try to parse as Docker v2 manifest (they have the same structure)
-	// The Docker Distribution library might accept it if we use schema2.MediaTypeManifest
-	manifest, desc, err := distribution.UnmarshalManifest(schema2.MediaTypeManifest, bytes)
-	if err == nil {
-		// Verify it's actually a schema2 manifest
-		if _, ok := manifest.(*schema2.DeserializedManifest); ok {
-			d, err := core.ParseSHA256Digest(string(desc.Digest))
-			if err != nil {
-				return nil, core.Digest{}, fmt.Errorf("parse digest: %s", err)
-			}
-			return manifest, d, nil
-		}
-	}
-
-	// If that fails, parse manually by checking the mediaType in the JSON
+	// Parse by checking the mediaType in the JSON
+	var manifestJSON struct {
+		MediaType string `json:"mediaType"`
+		Config    struct {
+			Digest string `json:"digest"`
+		} `json:"config"`
+		Layers []struct {
+			Digest string `json:"digest"`
+		} `json:"layers"`
+	}
+	if err := json.Unmarshal(bytes, &manifestJSON); err != nil {
+		return nil, core.Digest{}, fmt.Errorf("unmarshal oci manifest json: %s", err)
+	}
+
+	if manifestJSON.MediaType != _ociManifestType {
+		return nil, core.Digest{}, fmt.Errorf("expected oci manifest type %s, got %s", _ociManifestType, manifestJSON.MediaType)
-	if manifestJSON.MediaType != _ociManifestType {
-		return nil, core.Digest{}, fmt.Errorf("expected oci manifest type %s, got %s", _ociManifestType, manifestJSON.MediaType)
+	// In OCI image manifests, mediaType may be omitted. Treat an empty mediaType
+	// as OCI, but reject manifests that explicitly specify a non-OCI media type.
+	if manifestJSON.MediaType != "" && manifestJSON.MediaType != _ociManifestType {
+		return nil, core.Digest{}, fmt.Errorf("expected oci manifest type %s or empty, got %s", _ociManifestType, manifestJSON.MediaType)
-	if manifestJSON.MediaType != _ociManifestType {
-		return nil, core.Digest{}, fmt.Errorf("expected oci manifest type %s, got %s", _ociManifestType, manifestJSON.MediaType)
+	// In OCI image manifests, mediaType may be omitted. Treat an empty mediaType
+	// as OCI, but reject manifests that explicitly specify a non-OCI media type.
+	if manifestJSON.MediaType != "" && manifestJSON.MediaType != _ociManifestType {
+		return nil, core.Digest{}, fmt.Errorf("expected oci manifest type %s or empty, got %s", _ociManifestType, manifestJSON.MediaType)
+	}
+
+	// Calculate digest of the manifest
+	d, err := core.NewDigester().FromBytes(bytes)
+	if err != nil {
+		return nil, core.Digest{}, fmt.Errorf("calculate manifest digest: %s", err)
+	}
+
+	// Parse digests from OCI format (they're already in "sha256:hex" format)
+	configDigest, err := core.ParseSHA256Digest(manifestJSON.Config.Digest)
+	if err != nil {
+		return nil, core.Digest{}, fmt.Errorf("parse config digest: %s", err)
+	}
+
+	// Convert to Docker v2 format by creating a schema2 manifest
+	// We need to convert the OCI structure to schema2 format
+	configDesc := distribution.Descriptor{
+		Digest:    digest.Digest(configDigest.String()),
+		MediaType: schema2.MediaTypeImageConfig,
+		Size:      0, // Size not available in OCI manifest
+	}
+
+	layers := make([]distribution.Descriptor, 0, len(manifestJSON.Layers))
+	for _, layer := range manifestJSON.Layers {
+		layerDigest, err := core.ParseSHA256Digest(layer.Digest)
+		if err != nil {
+			return nil, core.Digest{}, fmt.Errorf("parse layer digest: %s", err)
+		}
+		layers = append(layers, distribution.Descriptor{
+			Digest:    digest.Digest(layerDigest.String()),
+			MediaType: schema2.MediaTypeLayer,
+			Size:      0, // Size not available in OCI manifest
+		})
+	}
+
+	ociManifest := &schema2.DeserializedManifest{
+		Manifest: schema2.Manifest{
+			Versioned: manifestlist.SchemaVersion,
+			Config:    configDesc,
+			Layers:    layers,
+		},
+	}
+
+	return ociManifest, d, nil
+}
+
 func GetSupportedManifestTypes() string {
-	return fmt.Sprintf("%s,%s", _v2ManifestType, _v2ManifestListType)
+	return fmt.Sprintf("%s,%s,%s", _v2ManifestType, _v2ManifestListType, _ociManifestType)
 }