65029f8c8f
* Fix pkcs7 parsing in some cases brings in https://github.com/mozilla-services/pkcs7/pull/61 from upstream In some cases but not all, aws includes a certificate in the pkcs7 response, and currently vault fails to parse those certificates: ``` URL: PUT https://vault.example.com/v1/auth/aws/login Code: 500. Errors * failed to parse the BER encoded PKCS#7 signature: ber2der: Invalid BER format ``` This fixes logins on those instances. Note we could not readily ascertain why some instances have those certificates and others don't. * Add changelog entry * Correct missed line |
||
|---|---|---|
| .. | ||
| README.md | ||
| ber.go | ||
| ber_test.go | ||
| decrypt.go | ||
| decrypt_test.go | ||
| encrypt.go | ||
| encrypt_test.go | ||
| pkcs7.go | ||
| pkcs7_test.go | ||
| sign.go | ||
| sign_test.go | ||
| verify.go | ||
| verify_test_dsa.go | ||
README.md
PKCS7
This code is used to verify PKCS7 signatures for the EC2 auth method. The code was forked from mozilla-services/pkcs7 and modified for Vault.