Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add chain in response for all CAs, fix newlines in response #341

Merged
merged 1 commit into from Jan 22, 2022
Merged

Add chain in response for all CAs, fix newlines in response #341

merged 1 commit into from Jan 22, 2022

Conversation

haydentherapper
Copy link
Contributor

The certificate's chain was not being included when issuing
certificates for non-GCP CAs.

We were also adding too many newlines between PEM-encoded
certificates. pem.Encode automatically adds newlines. Just
in case the source that's providing the certificates is
not including trailing newlines, I've added a check to
optionally append newlines. The dev.sigstore.cosign/chain
annotation will no longer start with a newline after this change.

I've tested these changes with a local instance of Fulcio, and
there were no issues with Cosign signing and verifying.

Signed-off-by: Hayden Blauzvern hblauzvern@google.com

Summary

Ticket Link

Fixes

Release Note

@haydentherapper
Add chain in response for all CAs, fix newlines in response
e590f1e 
The certificate's chain was not being included when issuing
certificates for non-GCP CAs.

We were also adding too many newlines between PEM-encoded
certificates. pem.Encode automatically adds newlines. Just
in case the source that's providing the certificates is
not including trailing newlines, I've added a check to
optionally append newlines.

Signed-off-by: Hayden Blauzvern <hblauzvern@google.com>
@dlorenc dlorenc merged commit 10262db into sigstore:main Jan 22, 2022
@haydentherapper haydentherapper deleted the pass-chain branch January 24, 2022 18:04
@znewman01 znewman01 mentioned this pull request Mar 2, 2022
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dlorenc dlorenc dlorenc approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@haydentherapper @dlorenc