New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bug 1749653: (attempt to) fix ECDSA formatted private key usage in route #23927
Conversation
An ECDSA private key only specifies "EC PRIVATE KEY"
@Alveel: This pull request references Bugzilla bug 1749653, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Hi @Alveel. Thanks for your PR. I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: Alveel The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
@Alveel: This pull request references Bugzilla bug 1749653, which is valid. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
This appears to be a duplicate of #23918. |
Closing as a dupe of #23918. Let me know if I've made a mistake. /close |
@ironcladlou: Closed this PR. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
I believe you are correct @ironcladlou. Maybe it's a good idea to internally link the bugzilla reports? |
I believe all the bugzillas are appropriately cross-referenced from GitHub. The backport BZs won't link up automatically until https://bugzilla.redhat.com/show_bug.cgi?id=1723400 is verified, then everything should sort out. Thanks! |
An ECDSA private key only specifies "EC PRIVATE KEY", not "ECDSA PRIVATE KEY": https://tools.ietf.org/html/rfc5915
Wouldn't it be better to use
MarshalPKCS8PrivateKey
in the*KeyBlockVerifier
functions? The go documentation specifiesThis is probably incomplete, I tried to set up a test environment to build everything but was having quite some issues there. I'd need to spend quite some more time to set that up. Any/all comments/additions/criticism etc. welcome.
Also,
gofmt
changed some of the spacing :)