Archives/smallstep-certificates
2
0
Fork 0
mirror of https://github.com/smallstep/certificates.git synced 2024-11-11 07:11:00 +00:00
Code Issues Packages Projects Releases Wiki Activity
4,113 Commits 37 Branches 223 Tags 44 MiB
90b5347887
Commit Graph

4113 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
github-actions[bot]
27fdfca7c8
Merge pull request #1595 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.59.0 
Bump google.golang.org/grpc from 1.58.3 to 1.59.0
 2023-10-23 20:04:56 +02:00
dependabot[bot]
352979ac23
Bump google.golang.org/grpc from 1.58.3 to 1.59.0 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.58.3 to 1.59.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.3...v1.59.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-23 17:54:18 +00:00
github-actions[bot]
0425a0c86c
Merge pull request #1596 from smallstep/dependabot/go_modules/google.golang.org/api-0.148.0 
Bump google.golang.org/api from 0.147.0 to 0.148.0
 2023-10-23 19:52:03 +02:00
dependabot[bot]
756bec0df8
Bump google.golang.org/api from 0.147.0 to 0.148.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.147.0 to 0.148.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.147.0...v0.148.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-23 17:43:05 +00:00
dependabot[bot]
16f1606ad4
Bump github.com/newrelic/go-agent/v3 from 3.26.0 to 3.27.0 
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent) from 3.26.0 to 3.27.0.
- [Release notes](https://github.com/newrelic/go-agent/releases)
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md)
- [Commits](https://github.com/newrelic/go-agent/compare/v3.26.0...v3.27.0)

---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-23 17:42:16 +00:00
Max
c451546cfb
[action] fix actionlint warnings (#1598) 2023-10-23 19:22:26 +02:00
Mariano Cano
96c87bb99e
Merge pull request #1590 from smallstep/mariano/asn1-bool 
Upgrade go.step.sm/crypto with ASN.1 bool support
 2023-10-18 11:48:28 -07:00
Mariano Cano
ad22f149b7
Upgrade go.step.sm/crypto with ASN.1 bool support 
This commit upgrades go.step.sm/crypto dependency with a version that
adds support of ASN.1 boolean encoding.
 2023-10-18 11:42:55 -07:00
Carl Tashian
5d10e54551
Merge pull request #1580 from smallstep/carl/unversioned 
Wrap unversioned step-ca binary into an unversioned dir
 2023-10-17 10:26:08 -07:00
github-actions[bot]
06baf58c9f
Merge pull request #1588 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-1.6.0 
Bump dependabot/fetch-metadata from 1.1.1 to 1.6.0
 2023-10-17 15:44:14 +02:00
github-actions[bot]
d5663ef021
Merge pull request #1589 from smallstep/dependabot/go_modules/google.golang.org/api-0.147.0 
Bump google.golang.org/api from 0.145.0 to 0.147.0
 2023-10-17 15:42:55 +02:00
dependabot[bot]
d5f17908a3
Bump google.golang.org/api from 0.145.0 to 0.147.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.145.0 to 0.147.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.145.0...v0.147.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-17 13:40:40 +00:00
dependabot[bot]
f548c13e3e
Bump dependabot/fetch-metadata from 1.1.1 to 1.6.0 
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.1.1 to 1.6.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.1.1...v1.6.0)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-17 13:39:37 +00:00
Max
830f31c6d1
[action] add dependabot updates for github actions (#1586) 2023-10-17 16:39:17 +03:00
github-actions[bot]
819a4d7d6b
Merge pull request #1584 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.2 
Bump cloud.google.com/go/security from 1.15.1 to 1.15.2
 2023-10-17 12:09:49 +02:00
github-actions[bot]
f8ae8f252e
Merge pull request #1582 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.58.3 
Bump google.golang.org/grpc from 1.58.2 to 1.58.3
 2023-10-17 12:09:32 +02:00
github-actions[bot]
7008feae30
Merge pull request #1583 from smallstep/dependabot/go_modules/github.com/google/go-cmp-0.6.0 
Bump github.com/google/go-cmp from 0.5.9 to 0.6.0
 2023-10-17 12:09:17 +02:00
github-actions[bot]
c70c092557
Merge pull request #1585 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.36.0 
Bump go.step.sm/crypto from 0.35.1 to 0.36.0
 2023-10-17 12:09:01 +02:00
dependabot[bot]
2574555672
Bump cloud.google.com/go/security from 1.15.1 to 1.15.2 
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go) from 1.15.1 to 1.15.2.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-cloud-go/compare/kms/v1.15.1...kms/v1.15.2)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-17 09:47:04 +00:00
github-actions[bot]
3a633c1cf6
Merge pull request #1581 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.2 
Bump cloud.google.com/go/longrunning from 0.5.1 to 0.5.2
 2023-10-17 11:44:25 +02:00
dependabot[bot]
d66ddf890c
Bump go.step.sm/crypto from 0.35.1 to 0.36.0 
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto) from 0.35.1 to 0.36.0.
- [Release notes](https://github.com/smallstep/crypto/releases)
- [Commits](https://github.com/smallstep/crypto/compare/v0.35.1...v0.36.0)

---
updated-dependencies:
- dependency-name: go.step.sm/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-16 15:42:54 +00:00
dependabot[bot]
7ada4cac91
Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.9 to 0.6.0.
- [Release notes](https://github.com/google/go-cmp/releases)
- [Commits](https://github.com/google/go-cmp/compare/v0.5.9...v0.6.0)

---
updated-dependencies:
- dependency-name: github.com/google/go-cmp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-16 15:42:01 +00:00
dependabot[bot]
6d6b8882ad
Bump google.golang.org/grpc from 1.58.2 to 1.58.3 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.58.2 to 1.58.3.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.2...v1.58.3)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-16 15:41:48 +00:00
dependabot[bot]
c6daca0c2e
Bump cloud.google.com/go/longrunning from 0.5.1 to 0.5.2 
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go) from 0.5.1 to 0.5.2.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-cloud-go/compare/dataflow/v0.5.1...longrunning/v0.5.2)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-16 15:41:28 +00:00
Carl Tashian
de1dc6838f
Wrap unversioned step into an unversioned dir 2023-10-12 15:20:03 -07:00
Carl Tashian
63aa894525
Wrap unversioned step into an unversioned dir 2023-10-12 15:17:16 -07:00
Mariano Cano
f7836a0664
Merge pull request #1578 from smallstep/upgrade-x-net-http2 
Upgrades golang.org/x/net/http2
 2023-10-10 12:55:23 -07:00
Mariano Cano
532fc228d3
Upgrades golang.org/x/net/http2 
Although step-ca doesn't manually configure HTTP/2, the new version
fixes the issue described in https://go.dev/issue/63417.
 2023-10-10 12:32:13 -07:00
github-actions[bot]
95bf3d60ef
Merge pull request #1574 from smallstep/dependabot/go_modules/golang.org/x/net-0.16.0 
Bump golang.org/x/net from 0.15.0 to 0.16.0
 2023-10-10 10:59:39 +02:00
dependabot[bot]
bf7aa211eb
Bump golang.org/x/net from 0.15.0 to 0.16.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.15.0 to 0.16.0.
- [Commits](https://github.com/golang/net/compare/v0.15.0...v0.16.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-09 23:05:10 +00:00
github-actions[bot]
06174b9ea7
Merge pull request #1575 from smallstep/dependabot/go_modules/google.golang.org/api-0.145.0 
Bump google.golang.org/api from 0.143.0 to 0.145.0
 2023-10-10 01:02:53 +02:00
dependabot[bot]
51612b6345
Bump google.golang.org/api from 0.143.0 to 0.145.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.143.0 to 0.145.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.143.0...v0.145.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-09 15:14:33 +00:00
Max
9f84f7ce35
Allow for identity certificate signing (in sshSign) by skipping validators (#1572) 
- skip urisValidator for identity certificate signing. Implemented
  by building the validator with the context in a hacky way.
 2023-10-06 14:02:19 -07:00
Herman Slatman
06750b03fe
Merge pull request #1566 from smallstep/herman/fix-init-with-duplicate-provisioner-name 
Fix `step ca init` with duplicate provisioner name (`--provisioner acme --acme`)
 2023-10-04 23:29:58 +02:00
Herman Slatman
d1dd1fa69c
Merge pull request #1570 from smallstep/herman/improve-scep-request-handling 
Improve SCEP request handling
 2023-10-04 22:51:44 +02:00
Herman Slatman
25f4b4014d
Add base64 to the raw message decoding error 2023-10-04 13:34:26 +02:00
Herman Slatman
965d7aa7f4
Fix linting issues 2023-10-04 13:33:01 +02:00
Herman Slatman
cd78b9fd43
Implement workaround for weird macOS SCEP message in query 
Apparently the macOS SCEP client sends a SCEP message in the query
that's not fully escaped. Only the base64 padding is escaped, the
'+' and '/' characters aren't.

This is a bit of a special case, because the macOS SCEP client
will default to using HTTP POST for the PKIOperation. But if the
CA is configured without the POSTPKIOperation capability, the
macOS SCEP client will use HTTP GET instead. This behavior might
be the same on iOS.
 2023-10-04 13:16:48 +02:00
Herman Slatman
3c12b4f5ad
Improve decoding SCEP requests 2023-10-03 16:32:55 +02:00
github-actions[bot]
829de7cf58
Merge pull request #1568 from smallstep/dependabot/go_modules/google.golang.org/api-0.143.0 
Bump google.golang.org/api from 0.142.0 to 0.143.0
 2023-10-03 01:00:42 +02:00
github-actions[bot]
2e4bb34363
Merge pull request #1567 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.26.0 
Bump github.com/newrelic/go-agent/v3 from 3.25.1 to 3.26.0
 2023-10-03 01:00:18 +02:00
dependabot[bot]
08dcf39cf7
Bump google.golang.org/api from 0.142.0 to 0.143.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.142.0 to 0.143.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.142.0...v0.143.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-02 15:55:28 +00:00
dependabot[bot]
9e0abb7c1d
Bump github.com/newrelic/go-agent/v3 from 3.25.1 to 3.26.0 
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent) from 3.25.1 to 3.26.0.
- [Release notes](https://github.com/newrelic/go-agent/releases)
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md)
- [Commits](https://github.com/newrelic/go-agent/compare/v3.25.1...v3.26.0)

---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-02 15:55:09 +00:00
Herman Slatman
2e560caf68
Add some basic tests for GenerateConfig 
So far the `GenerateConfig` method wasn't tested. This commit adds
a couple of basic tests for this method. It's not fully covered yet,
nor are all properties being checked, but it provides a starting
point for refactoring the CA (configuration) initialization process.
 2023-10-02 15:58:31 +02:00
Herman Slatman
991a9a6223
Merge branch 'master' into herman/fix-init-with-duplicate-provisioner-name 2023-10-02 14:17:53 +02:00
Herman Slatman
3c084822b3
Prevent invalid provisioner name on step ca init 
An unfortunate combination of `--provisioner acme` and the `--acme`
flags on `step ca init` could lead to an invalidat CA configuration.
This commit prevent this case from happening. A similar error could
occur for the `sshpop` provisioner, so a fix was implemented for that
case too.

The fix doesn't catch all cases, e.g. it doesn't check for multiple
provisioners having the same `acme-` or `sshpop-` prefix. The code
that is called is intended to be only called from a `step ca init`
invocation, so should work for these cases, but might not if the
methods are invoked at other times.
 2023-10-02 13:30:35 +02:00
Max
454cec7cdc
Remove gitleaks ignore file (#1565) 2023-09-29 20:02:51 +02:00
Max
5758657b53
[action] remove gitleaks key from code-scan-cron (#1564) 2023-09-29 19:34:28 +02:00
Carl Tashian
88dda9cd37
Merge pull request #1563 from smallstep/carl/fix-cosign-regexp 
Fix cosign identity regexp
 2023-09-28 17:18:03 -07:00
Carl Tashian
13db94721a
Fix cosign identity regexp 2023-09-28 17:06:03 -07:00