mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-07 07:07:05 +02:00
Code Issues Projects Releases Wiki Activity
86ba0dbdeb
vault/builtin/logical/pki
History
Scott Miller 86ba0dbdeb
Use go-secure-stdlib's RSA key generator backed by a DRBG (#29020) 
* Use DRBG based RSA key generation everywhere

* switch to the conditional generator

* Use DRBG based RSA key generation everywhere

* switch to the conditional generator

* Add an ENV var to disable the DRBG in a pinch

* update go.mod

* Use DRBG based RSA key generation everywhere

* switch to the conditional generator

* Add an ENV var to disable the DRBG in a pinch

* Use DRBG based RSA key generation everywhere

* update go.mod

* fix import

* Remove rsa2 alias, remove test code

* move cryptoutil/rsa.go to sdk

* move imports too

* remove makefile change

* rsa2->rsa

* more rsa2->rsa, remove test code

* fix some overzelous search/replace

* Update to a real tag

* changelog

* copyright

* work around copyright check

* work around copyright check pt2

* bunch of dupe imports

* missing import

* wrong license

* fix go.mod conflict

* missed a spot

* dupe import
2024-12-05 15:39:16 -06:00
..
cmd/pki [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
dnstest Stop processing ACME verifications when active node is stepped down (#23278) 2023-09-26 13:59:13 -04:00
issuing Run make fmt. (#29053) 2024-11-28 15:27:17 +00:00
managed_key PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
parsing Ongoing refactoring of PKI revocation code (#27427) 2024-06-11 09:25:14 -04:00
pki_backend Add a max_crl_size parameter to CRL config (#28654) 2024-10-09 21:38:55 +00:00
revocation Add missing revocation storage lock on RevokeCert refactoring (#28259) 2024-09-03 17:18:30 -04:00
acme_authorizations.go Fix issue building urls with IPv6 IPs for ACME http-01 challenges (#28718) 2024-10-16 14:26:44 -04:00
acme_billing_test.go Remove all references to current fragments, standbyfragments and partialMonthTracker (#29066) 2024-12-02 11:44:03 -08:00
acme_billing.go [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
acme_challenge_engine_test.go Fix issue building urls with IPv6 IPs for ACME http-01 challenges (#28718) 2024-10-16 14:26:44 -04:00
acme_challenge_engine.go Fix issue building urls with IPv6 IPs for ACME http-01 challenges (#28718) 2024-10-16 14:26:44 -04:00
acme_challenges_test.go add gosimport to make fmt and run it (#25383) 2024-02-13 14:07:02 -08:00
acme_challenges.go Adds ACME specific error types to errors returned by challenge validation functions. (#28678) 2024-10-15 17:13:13 +00:00
acme_eab_policy.go [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
acme_errors.go Adds ACME specific error types to errors returned by challenge validation functions. (#28678) 2024-10-15 17:13:13 +00:00
acme_jws.go [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
acme_state_test.go [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
acme_state.go Remove direct usage of logical/pki's storageContext.Backend field (#27401) 2024-06-07 14:18:17 -04:00
acme_wrappers_test.go PKI: Refactor common role path policy code into common area (#27759) 2024-07-11 13:22:33 -04:00
acme_wrappers.go PKI: Refactor common role path policy code into common area (#27759) 2024-07-11 13:22:33 -04:00
backend_oss_test.go [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
backend_oss.go [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
backend_test.go Use go-secure-stdlib's RSA key generator backed by a DRBG (#29020) 2024-12-05 15:39:16 -06:00
backend.go Do not acquire a read lock twice on tidyStatusLock during tidy-status api call. (#28556) 2024-10-02 08:58:05 -04:00
ca_test.go Use go-secure-stdlib's RSA key generator backed by a DRBG (#29020) 2024-12-05 15:39:16 -06:00
ca_util_test.go Use go-secure-stdlib's RSA key generator backed by a DRBG (#29020) 2024-12-05 15:39:16 -06:00
ca_util.go Key Usage Enablement for Ent-Feature CMPv2 (#28237) 2024-08-30 17:05:20 +00:00
cert_util_test.go Enforce PKI issuer constraints. (#29045) 2024-11-27 18:34:26 +01:00
cert_util.go add error info to internal error (#28714) 2024-10-15 17:16:57 +00:00
chain_test.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
chain_util.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
cieps_util_oss.go Remove direct usage of logical/pki's storageContext.Backend field (#27401) 2024-06-07 14:18:17 -04:00
cmpv2_util_oss.go add ce changes and documentation for tidying cmpv2 nonce store (#28362) 2024-09-12 11:32:51 -05:00
config_util.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
crl_test.go Add a max_crl_size parameter to CRL config (#28654) 2024-10-09 21:38:55 +00:00
crl_util.go Add a max_crl_size parameter to CRL config (#28654) 2024-10-09 21:38:55 +00:00
defaultdirectorypolicytype_enumer.go Use enumer to generate String() methods for most enums (#25705) 2024-04-17 11:14:14 -07:00
fields.go Split the Key_Usage Field into separate fields (#28500) 2024-09-24 15:35:24 -04:00
ifmodifiedreqtype_enumer.go Use enumer to generate String() methods for most enums (#25705) 2024-04-17 11:14:14 -07:00
integration_test.go Return the proper serial number in OCSP verification errors (#27696) 2024-07-09 09:03:34 -04:00
key_util.go Remove direct usage of logical/pki's storageContext.Backend field (#27401) 2024-06-07 14:18:17 -04:00
metadata_oss.go OSS changes to rename metadata cert_metadata (#27365) 2024-06-05 18:17:04 +00:00
metadata.pb.go Fix protoc issue (#28928) 2024-11-15 19:33:48 +00:00
metadata.proto Address go format and proto linting issues (#26782) 2024-05-02 12:03:06 -04:00
metrics.go Certificate Metadata, CE components (#26710) 2024-05-01 15:19:53 -05:00
path_acme_account.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
path_acme_authorizations.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
path_acme_challenges.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
path_acme_directory.go [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
path_acme_eab.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
path_acme_nonce.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
path_acme_order_test.go Fix issue building urls with IPv6 IPs for ACME http-01 challenges (#28718) 2024-10-16 14:26:44 -04:00
path_acme_order.go PKI: Add a new leaf_not_after_behavior value to force erroring in all circumstances (#28907) 2024-11-15 11:59:54 -05:00
path_acme_revoke.go Commence refactoring to decouple revocation code from main PKI backend (#27417) 2024-06-10 16:41:47 +00:00
path_acme_test.go Use go-secure-stdlib's RSA key generator backed by a DRBG (#29020) 2024-12-05 15:39:16 -06:00
path_config_acme_test.go Use go-secure-stdlib's RSA key generator backed by a DRBG (#29020) 2024-12-05 15:39:16 -06:00
path_config_acme.go Remove direct usage of logical/pki's storageContext.Backend field (#27401) 2024-06-07 14:18:17 -04:00
path_config_ca.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
path_config_cluster.go [COMPLIANCE] License changes (#22290) 2023-08-10 18:14:03 -07:00
path_config_crl.go Add a max_crl_size parameter to CRL config (#28654) 2024-10-09 21:38:55 +00:00
path_config_urls.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
path_fetch_issuers_stubs_oss.go Add PKI issuer config fields to enable check disablement parameters (#28826) 2024-11-04 11:46:55 -05:00
path_fetch_issuers.go PKI: Add a new leaf_not_after_behavior value to force erroring in all circumstances (#28907) 2024-11-15 11:59:54 -05:00
path_fetch_keys.go Remove direct usage of logical/pki's storageContext.Backend field (#27401) 2024-06-07 14:18:17 -04:00
path_fetch.go Handle missing serial number more gracefully (#27681) 2024-07-03 21:01:26 +00:00
path_intermediate.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
path_issue_sign.go Add hook for ENT tweaking of PKI contraints verification options. (#29048) 2024-11-27 19:59:57 +01:00
path_manage_issuers.go Add PKI issuer config fields to enable check disablement parameters (#28826) 2024-11-04 11:46:55 -05:00
path_manage_keys_test.go add gosimport to make fmt and run it (#25383) 2024-02-13 14:07:02 -08:00
path_manage_keys.go add gosimport to make fmt and run it (#25383) 2024-02-13 14:07:02 -08:00
path_ocsp_test.go Commence refactoring to decouple revocation code from main PKI backend (#27417) 2024-06-10 16:41:47 +00:00
path_ocsp.go Commence refactoring to decouple revocation code from main PKI backend (#27417) 2024-06-10 16:41:47 +00:00
path_resign_crls_test.go add gosimport to make fmt and run it (#25383) 2024-02-13 14:07:02 -08:00
path_resign_crls.go Commence refactoring to decouple revocation code from main PKI backend (#27417) 2024-06-10 16:41:47 +00:00
path_revoke.go Commence refactoring to decouple revocation code from main PKI backend (#27417) 2024-06-10 16:41:47 +00:00
path_roles_test.go add gosimport to make fmt and run it (#25383) 2024-02-13 14:07:02 -08:00
path_roles.go community edition changes to enable certificate metadata ent (#26951) 2024-05-10 18:49:20 +00:00
path_root.go PKI: Add a new leaf_not_after_behavior value to force erroring in all circumstances (#28907) 2024-11-15 11:59:54 -05:00
path_sign_issuers.go Split the Key_Usage Field into separate fields (#28500) 2024-09-24 15:35:24 -04:00
path_tidy_test.go Use go-secure-stdlib's RSA key generator backed by a DRBG (#29020) 2024-12-05 15:39:16 -06:00
path_tidy.go Cleanup some duplication in the PKI tidy response field definitions (#28614) 2024-10-07 16:20:57 -04:00
periodic.go Move fetchCertBySerial back into the main PKI package. (#27461) 2024-06-12 15:53:40 +00:00
secret_certs.go Commence refactoring to decouple revocation code from main PKI backend (#27417) 2024-06-10 16:41:47 +00:00
storage_migrations_test.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
storage_migrations.go PKI refactoring to start breaking apart monolith into sub-packages (#24406) 2023-12-07 09:22:53 -05:00
storage_test.go Split the Key_Usage Field into separate fields (#28500) 2024-09-24 15:35:24 -04:00
storage_unified.go Ongoing refactoring of PKI revocation code (#27427) 2024-06-11 09:25:14 -04:00
storage.go PKI: Track last time auto tidy was run across restarts (#28488) 2024-09-26 09:47:11 -04:00
test_helpers.go Add WriteRaw to client api and new PKI test helper (#24818) 2024-01-11 13:51:42 -05:00
tidystatusstate_enumer.go Use enumer to generate String() methods for most enums (#25705) 2024-04-17 11:14:14 -07:00
util.go Ongoing refactoring of PKI revocation code (#27427) 2024-06-11 09:25:14 -04:00