luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
open-vault/builtin/credential/aws
History
Jacob Burroughs 65029f8c8f
Fix pkcs7 parsing in some cases (#12519) 
* Fix pkcs7 parsing in some cases

brings in https://github.com/mozilla-services/pkcs7/pull/61 from upstream

In some cases but not all, aws includes a certificate in the pkcs7 response,
and currently vault fails to parse those certificates:
```
URL: PUT https://vault.example.com/v1/auth/aws/login
Code: 500. Errors
* failed to parse the BER encoded PKCS#7 signature: ber2der: Invalid BER format
```

This fixes logins on those instances.  Note we could not readily ascertain why
some instances have those certificates and others don't.

* Add changelog entry

* Correct missed line
 		2021-09-10 12:17:03 -04:00
..
cmd/aws Update to api 1.0.1 and sdk 0.1.8 2019-04-15 14:10:07 -04:00
pkcs7 Fix pkcs7 parsing in some cases (#12519) 2021-09-10 12:17:03 -04:00
backend.go Move awsutil over to the go-secure-stdlib version (#12128) 2021-07-20 20:42:00 -04:00
backend_e2e_test.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
backend_test.go creds/aws: Add support for DSA signature verification for EC2 (#12340) 2021-08-19 09:16:31 -04:00
cli.go Move awsutil over to the go-secure-stdlib version (#12128) 2021-07-20 20:42:00 -04:00
client.go Move awsutil over to the go-secure-stdlib version (#12128) 2021-07-20 20:42:00 -04:00
path_config_certificate.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
path_config_client.go Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
path_config_client_test.go Add an sts_region parameter to the AWS auth engine's client config (#7922) 2019-12-10 16:02:04 -08:00
path_config_identity.go Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
path_config_identity_test.go Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
path_config_rotate_root.go Move awsutil over to the go-secure-stdlib version (#12128) 2021-07-20 20:42:00 -04:00
path_config_rotate_root_test.go Move awsutil over to the go-secure-stdlib version (#12128) 2021-07-20 20:42:00 -04:00
path_config_sts.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
path_config_tidy_identity_accesslist.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
path_config_tidy_roletag_denylist.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
path_identity_accesslist.go Replace deprecated terms in AWS Auth (#10997) 2021-02-25 23:23:34 -08:00
path_login.go creds/aws: Add support for DSA signature verification for EC2 (#12340) 2021-08-19 09:16:31 -04:00
path_login_test.go Aws auth fixes (#9825) 2020-08-25 17:37:59 -05:00
path_role.go [VAULT-1986] Cap AWS Token TTL based on Default Lease TTL (#12026) 2021-07-15 10:05:38 -07:00
path_role_tag.go Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
path_role_test.go Move awsutil over to the go-secure-stdlib version (#12128) 2021-07-20 20:42:00 -04:00
path_roletag_denylist.go Replace deprecated terms in AWS Auth (#10997) 2021-02-25 23:23:34 -08:00
path_tidy_identity_accesslist.go builtin: deprecate errwrap.Wrapf() throughout (#11430) 2021-04-22 11:20:59 -04:00
path_tidy_roletag_denylist.go builtin: deprecate errwrap.Wrapf() throughout (#11430) 2021-04-22 11:20:59 -04:00