You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Your understanding is correct; there are two issues here. One is that the computation of the hash over the entire envelope is not canonical, because the addition of publicKey introduces marshalling and unmarshalling on the server side that may result in a different byte stream than the client's representation of the DSSE envelope. The other is a bug in how the IndexKeys are computed (which happens only after the entry is made into the log, as you note). I can fix the IndexKeys bug for 0.0.2, but we should also fix the broader issue in the 0.0.3 version of intoto (that will also address #1150)
Description
If I try to upload an intoto/0.0.2 entry to Rekor without including a value for the
hash
field, I receive a 502 status code in response:Despite the error, it appears that an entry is created. If I resubmit the same request a second time, I receive the following:
Given that the
hash
field is marked as "readOnly" in the schema I would expect that I could create an entry without specifying a value.The text was updated successfully, but these errors were encountered: