alexvanin/certificates
1
0
Fork 0
forked from TrueCloudLab/certificates
Code Pull requests Activity
2933 commits 34 branches 199 tags 41 MiB
Commit graph

2933 commits

This branch
This branch
All branches
Author SHA1 Message Date
Mariano Cano
432477aa91
Merge pull request #1030 from smallstep/herman/fix-template-validation 
Add provisioner template validation
 2022-08-25 14:51:39 -07:00
Mariano Cano
1938b1bb34 Merge branch 'master' into herman/fix-template-validation 2022-08-25 13:31:33 -07:00
Mariano Cano
1d1e024b84 Upgrade to go.step.sm/crypto v0.18.0 2022-08-25 12:40:31 -07:00
Herman Slatman
6b7b989988
Add provisioner template validation 
Fixes #1012
 2022-08-23 16:27:49 +02:00
Mariano Cano
dd6f59b538
Merge pull request #1024 from smallstep/gosec 
Address gosec warnings
 2022-08-22 14:19:50 -07:00
Mariano Cano
23b8f45b37 Address gosec warnings 
Most if not all false positives
 2022-08-18 17:46:20 -07:00
Mariano Cano
713dfad884
Merge pull request #1019 from smallstep/head-middleware 
Add a middleware to automatically route HEAD requests to GET
 2022-08-16 16:21:19 -07:00
Max
8f88740a5a
Merge pull request #1014 from smallstep/max/dns-id 
Check for DNS name validity
 2022-08-16 16:20:12 -07:00
Mariano Cano
6cab4d328e Add a middleware to automatically route HEAD requests to GET 
Fixes #992
 2022-08-16 16:10:29 -07:00
max furman
c040e4b459 Add unit tests 2022-08-16 15:48:23 -07:00
Mariano Cano
85fc837dc3
Merge pull request #1018 from smallstep/ra-config 
Ra config
 2022-08-16 15:24:01 -07:00
Mariano Cano
3c88a9ccc2 Fixed changelog 2022-08-16 15:11:49 -07:00
Mariano Cano
8e08f0dea3 Add entries to changelog 2022-08-16 14:48:03 -07:00
Mariano Cano
0c7467ceb2 Allow to automatically configure and linked RA 2022-08-16 14:39:02 -07:00
Mariano Cano
5e0be92273 Allow option to skip the validation of config 2022-08-16 14:04:04 -07:00
max furman
b7c2f6c482 Check for DNS name validity 2022-08-16 00:12:31 -07:00
Mariano Cano
ae76d943c9
Merge pull request #1009 from smallstep/code-ql 
Code QL
 2022-08-11 18:53:30 -07:00
Mariano Cano
2db15e4eb5 Remove unnecessary log entries 
These log entries add CodeQL warnings and are not necessary because
our default http.ResponseWriter allows adding log entries.
 2022-08-11 18:14:36 -07:00
Mariano Cano
759aa26a57 Fix linter warning 2022-08-11 17:47:58 -07:00
Mariano Cano
90d2785776 Sanitize log entries in logging package 2022-08-11 17:44:31 -07:00
Mariano Cano
b62f4d1000 Add lgtm comments on some security warnings 2022-08-11 17:32:57 -07:00
Mariano Cano
a5439c43cd Remove ciphersuites without Lucky13 countermeasures 
SHA-256 variants of the CBC ciphersuites don't implement any Lucky13
countermeasures. See http://www.isg.rhul.ac.uk/tls/Lucky13.html and
https://www.imperialviolet.org/2013/02/04/luckythirteen.html.
 2022-08-11 17:11:04 -07:00
Mariano Cano
d6baad443b
Merge pull request #1008 from smallstep/endpoint-id 
Endpoint ID
 2022-08-11 15:18:47 -07:00
Mariano Cano
8bd0174251 Rename field to IsCAServerCert 2022-08-11 15:14:26 -07:00
Mariano Cano
5df1694250 Add endpoint id for the RA certificate 
In a linked RA mode, send an endpoint id to group the server
certificates.
 2022-08-11 14:47:11 -07:00
Max
20784c7a00
Merge pull request #1006 from smallstep/max/revoke-serial-validation 
Validate revocation serial number
 2022-08-11 09:45:26 -07:00
max furman
1dd0d7d0ee Update bad serial error to be more specific 2022-08-11 09:34:04 -07:00
max furman
73ba411e1d [action] parameterize golangci-lint version 2022-08-10 21:45:10 -07:00
Mariano Cano
eb091aec54 Simplify field names for ProvisionerInfo 2022-08-10 17:44:14 -07:00
Mariano Cano
a65adc032b
Merge pull request #1005 from smallstep/crypto-kms 
Use go.step.sm/crypto/kms
 2022-08-10 09:57:26 -07:00
max furman
7052a32c2c Validate revocation serial number 2022-08-09 11:04:00 -07:00
Mariano Cano
4985ab1d62 Remove kms package 2022-08-08 18:01:10 -07:00
Mariano Cano
369b8f81c3 Use go.step.sm/crypto/kms 
Fixes #975
 2022-08-08 17:58:18 -07:00
Max
3e2729e391
Merge pull request #989 from smallstep/max/disable-ssh-hosts 
Add attribute to disable SSH Hosts list API
 2022-08-08 14:15:35 -07:00
Mariano Cano
9f67a808cd
Merge pull request #1004 from smallstep/go-1.19 
Change actions to build using Go 1.19
 2022-08-08 12:35:49 -07:00
Mariano Cano
f1aabaa99c Use functions from os instead of io/ioutil 2022-08-08 12:12:53 -07:00
Mariano Cano
8445c29db6 Change actions to build using Go 1.19 
Fixes #998
 2022-08-08 12:01:18 -07:00
max furman
99c9155467 disableSSHHostsListAPI -> disableGetSSHHosts 2022-08-04 18:44:44 -07:00
Mariano Cano
38fb92452f
Merge pull request #993 from smallstep/ra-ids 
RA provisioner IDs
 2022-08-04 11:26:59 -07:00
Mariano Cano
22337da18c
Merge pull request #990 from qbit/master 
Update deps to bring in support for OpenBSD
 2022-08-04 11:26:37 -07:00
Mariano Cano
821743f71e Upgrade newrelic to v3 2022-08-04 11:16:11 -07:00
Aaron Bieber
135c481893 Update deps to bring in support for OpenBSD 
OpenBSD support was added to the following deps:
 - github.com/go-piv/piv-go in https://github.com/go-piv/piv-go/pull/101
 - github.com/newrelic/go-agent in https://github.com/newrelic/go-agent/pull/455
 - github.com/miekg/pkcs11 in https://github.com/miekg/pkcs11/pull/140

With these deps bumped, tests all pass on OpenBSD amd64.
 2022-08-04 11:38:15 -06:00
Mariano Cano
a2f7766943 Use released version of linkedca 2022-08-04 10:31:57 -07:00
Mariano Cano
c5c7c30cc2 Fix typo in ProvisionerInfo 2022-08-04 10:07:20 -07:00
Mariano Cano
64744562c6 Send RA provisioner to linkedca. 2022-08-03 18:44:25 -07:00
Mariano Cano
6b5d3dca95 Add provisioner name to RA info 2022-08-03 18:44:04 -07:00
Mariano Cano
9648fe6b4c Remove debug statement 2022-08-03 15:32:39 -07:00
Mariano Cano
a1f54921d2 Rename internal field 2022-08-03 12:07:45 -07:00
Mariano Cano
f9df8ac05f Remove unused interface 2022-08-03 12:03:49 -07:00
Mariano Cano
7a1e6a0e1f Fix and extend stepcas unit tests 2022-08-03 11:57:42 -07:00