Mariano Cano
aed1738ad0
Upgrade pkcs7 to the latest patches branch
...
smallstep/pkcs7@patches includes now support for generic Decrypter
methods, so KMS can be used instead of a key in disk with SCIM
2022-10-24 11:07:28 -07:00
Max
c407354c70
Merge pull request #1137 from smallstep/dependabot/go_modules/google.golang.org/api-0.100.0
...
Bump google.golang.org/api from 0.99.0 to 0.100.0
2022-10-24 09:18:31 -07:00
Max
25340c2bf6
Merge pull request #1138 from smallstep/dependabot/go_modules/github.com/stretchr/testify-1.8.1
...
Bump github.com/stretchr/testify from 1.8.0 to 1.8.1
2022-10-24 09:14:13 -07:00
dependabot[bot]
3e96113162
Bump github.com/stretchr/testify from 1.8.0 to 1.8.1
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.8.0 to 1.8.1.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.8.0...v1.8.1 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-24 15:45:07 +00:00
dependabot[bot]
016973fd2b
Bump google.golang.org/api from 0.99.0 to 0.100.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.99.0 to 0.100.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.99.0...v0.100.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-24 15:44:56 +00:00
Mariano Cano
398213af51
Merge pull request #1123 from smallstep/renew-raw-subject
...
Use RawSubject on renew and rekey
2022-10-20 10:41:46 -07:00
Mariano Cano
caf0628b8c
Merge pull request #1122 from smallstep/fix-1114
...
Split build and download in Dockerfiles
2022-10-19 19:16:38 -07:00
Mariano Cano
aefdfc7be7
Use RawSubject on renew and rekey
...
Renew was not replicating exactly the subject because extra names
gets decoded into pkix.Name.Names, the non-default ones should be
added to pkix.Name.ExtraNames. Instead of doing that, this commit
sets the RawSubject that will also keep the order.
Fixes #1106
2022-10-19 19:10:50 -07:00
Mariano Cano
18555a3cb2
Split build and download in Dockerfiles
...
On systems with low resources the command `go mod download` can fail.
This causes long builds of the docker images. This change adds a new
layer in the docker build splitting the build and download in two
steps.
Fixes #1114
2022-10-19 17:57:50 -07:00
Mariano Cano
53f2ecdad9
Merge pull request #1121 from smallstep/fix-1115
...
Use sh instead of bash in .version.sh script
2022-10-19 16:39:37 -07:00
Mariano Cano
d07c9accea
Use sh instead of bash in .version.sh script
...
Fixes #1115
2022-10-19 16:28:31 -07:00
Max
7b45968198
Merge pull request #1119 from smallstep/max/common-triage
2022-10-18 18:16:49 -07:00
max furman
91775f6d67
[action] move oss triage wofkow to common workflows
2022-10-18 11:57:47 -07:00
Max
361e2b2907
Merge pull request #1116 from smallstep/max/docs-revocation-link
...
Update revocation docs link
2022-10-17 13:58:19 -07:00
Max
c103458ee9
Merge pull request #1110 from smallstep/dependabot/go_modules/google.golang.org/api-0.99.0
...
Bump google.golang.org/api from 0.98.0 to 0.99.0
2022-10-17 13:52:05 -07:00
max furman
e436c36f8b
Update revocation docs link
2022-10-17 13:45:00 -07:00
dependabot[bot]
b83f268b4d
Bump google.golang.org/api from 0.98.0 to 0.99.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.98.0 to 0.99.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.98.0...v0.99.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-17 20:39:12 +00:00
Max
f410ef6628
Merge pull request #1112 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.6.0
...
Bump github.com/googleapis/gax-go/v2 from 2.5.1 to 2.6.0
2022-10-17 13:37:29 -07:00
dependabot[bot]
c3f6dcf7e7
Bump github.com/googleapis/gax-go/v2 from 2.5.1 to 2.6.0
...
Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go ) from 2.5.1 to 2.6.0.
- [Release notes](https://github.com/googleapis/gax-go/releases )
- [Commits](https://github.com/googleapis/gax-go/compare/v2.5.1...v2.6.0 )
---
updated-dependencies:
- dependency-name: github.com/googleapis/gax-go/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-17 17:18:04 +00:00
Herman Slatman
f7d153efa7
Merge pull request #1109 from smallstep/herman/remove-acme-revoke-authorization-todo
...
Remove TODO and clarify ACME revoke authorization method docs
2022-10-17 19:14:18 +02:00
Max
70828b882f
Merge pull request #1111 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.8.1
...
Bump github.com/hashicorp/vault/api from 1.8.0 to 1.8.1
2022-10-17 10:12:23 -07:00
Max
a7db13d47b
Merge pull request #1113 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.50.1
...
Bump google.golang.org/grpc from 1.50.0 to 1.50.1
2022-10-17 10:10:29 -07:00
dependabot[bot]
9ee11fd850
Bump google.golang.org/grpc from 1.50.0 to 1.50.1
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.50.0 to 1.50.1.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.50.0...v1.50.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-17 15:58:52 +00:00
dependabot[bot]
3676c59599
Bump github.com/hashicorp/vault/api from 1.8.0 to 1.8.1
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.8.0 to 1.8.1.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.8.0...v1.8.1 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-17 15:58:43 +00:00
Herman Slatman
cbc0864370
Remove TODO and clarify ACME revoke authorization method docs
2022-10-17 12:38:53 +02:00
Max
65b5a636df
Merge pull request #1104 from smallstep/max/err-assert
...
Fix err assert linter warnings - upgrade outdated package
2022-10-13 10:03:03 -07:00
max furman
7203739369
Fix err assert linter warnings - upgrade outdated package
2022-10-12 16:32:26 -07:00
Mariano Cano
e0994bed9d
Merge pull request #1102 from smallstep/yubikey-no-ca
...
Add test simulating YubiKey v5.2.4
2022-10-11 16:11:24 -07:00
Mariano Cano
a7e597450a
Update acme/challenge_test.go
...
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
2022-10-11 10:04:42 -07:00
Mariano Cano
7a78c76199
Add test simulating YubiKey v5.2.4
...
There are YubiKeys v5.2.4 where the attestation intermediate (f9)
does not have a basic constraint extension, so that certificate
is not marked as a CA. The test and CA in this commit imitates
that use case. Currently the test case returns an error as we
don't support it. But if we change the verification to support
this use case, the test should change accordingly.
2022-10-10 18:27:11 -07:00
Max
b142fc70f7
Merge pull request #1099 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.50.0
...
Bump google.golang.org/grpc from 1.49.0 to 1.50.0
2022-10-10 09:39:11 -07:00
Max
32edc54946
Merge pull request #1100 from smallstep/dependabot/go_modules/github.com/sirupsen/logrus-1.9.0
...
Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
2022-10-10 09:38:31 -07:00
Max
8598ff6a1c
Merge pull request #1101 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.21.0
...
Bump go.step.sm/crypto from 0.20.0 to 0.21.0
2022-10-10 09:37:54 -07:00
dependabot[bot]
b27d36d556
Bump go.step.sm/crypto from 0.20.0 to 0.21.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.20.0 to 0.21.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.20.0...v0.21.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-10 16:08:46 +00:00
dependabot[bot]
2522efe27a
Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
...
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus ) from 1.8.1 to 1.9.0.
- [Release notes](https://github.com/sirupsen/logrus/releases )
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sirupsen/logrus/compare/v1.8.1...v1.9.0 )
---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-10 16:08:38 +00:00
dependabot[bot]
2ee4218a69
Bump google.golang.org/grpc from 1.49.0 to 1.50.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.49.0 to 1.50.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.49.0...v1.50.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-10 16:08:34 +00:00
Herman Slatman
90cdcdd2eb
Merge pull request #1097 from smallstep/herman/update-nosql-v0.5.0
...
Update `github.com/smallstep/nosql` to v0.5.0
2022-10-07 20:05:47 +02:00
Herman Slatman
aa4e5bed76
Update changelog with smallstep/nosql@v0.5.0
fixes
2022-10-07 17:48:54 +02:00
Herman Slatman
764b7bb02f
Update github.com/smallstep/nosql
to v0.5.0
...
This version of `nosql` includes some fixes for MySQL DSNs. The
tag is backdated a bit, as to not include the most recent
changes, which may have a bigger impact.
Also ran `go mod tidy`, `go mod vendor`
2022-10-07 17:44:16 +02:00
Mariano Cano
a8f9b07aae
Merge pull request #1096 from smallstep/attestation-info
...
Attestation data
2022-10-06 12:48:14 -07:00
Mariano Cano
bd1938b0da
Add support for storing or sending attestation data to linkedca
2022-10-06 12:22:19 -07:00
Max
139e115f6f
Merge pull request #1091 from smallstep/max/pat
...
[action] replace secrets.PAT with more specific secrets
2022-10-05 15:31:39 -07:00
max furman
c66218330a
[action] replace secrets.PAT with more specific secrets
2022-10-04 22:02:08 -07:00
Max
a258ea3e2d
Merge pull request #1090 from smallstep/max/contextcheck
...
No longer need to ignore context warnings when context in request
2022-10-04 18:13:13 -07:00
max furman
66858a3870
No longer need to ignore context warnings when context in request
...
- after upgrade to golangci-lint 1.50.0
2022-10-04 13:49:10 -07:00
Max
72b6cb6d31
Merge pull request #1081 from smallstep/max/action-update
...
[action] updates and first pass at goreleaser deb
2022-10-04 13:27:00 -07:00
max furman
97cc09e26c
Remove deprecated binaries for awskms and cloudkms
2022-10-03 15:56:41 -07:00
max furman
4c687efb17
[action] updates and first pass at goreleaser deb
2022-10-03 15:56:34 -07:00
Mariano Cano
818dffe6fe
Merge pull request #1089 from smallstep/attestation-error
...
Revert ValidatedAt
2022-10-03 13:15:42 -07:00
Mariano Cano
21666ba887
Revert "Set timestamp when marking an acme challenge invalid"
...
This reverts commit 5f130895f3
.
2022-10-03 12:56:23 -07:00