65029f8c8f
* Fix pkcs7 parsing in some cases brings in https://github.com/mozilla-services/pkcs7/pull/61 from upstream In some cases but not all, aws includes a certificate in the pkcs7 response, and currently vault fails to parse those certificates: ``` URL: PUT https://vault.example.com/v1/auth/aws/login Code: 500. Errors * failed to parse the BER encoded PKCS#7 signature: ber2der: Invalid BER format ``` This fixes logins on those instances. Note we could not readily ascertain why some instances have those certificates and others don't. * Add changelog entry * Correct missed line |
||
---|---|---|
.. | ||
ber.go | ||
ber_test.go | ||
decrypt.go | ||
decrypt_test.go | ||
encrypt.go | ||
encrypt_test.go | ||
pkcs7.go | ||
pkcs7_test.go | ||
README.md | ||
sign.go | ||
sign_test.go | ||
verify.go | ||
verify_test_dsa.go |
PKCS7
This code is used to verify PKCS7 signatures for the EC2 auth method. The code was forked from mozilla-services/pkcs7 and modified for Vault.