search

cloudflare / gokeyless

Go implementation of the keyless protocol
https://blog.cloudflare.com/keyless-ssl-the-nitty-gritty-technical-details/
Other
473 stars 81 forks source link

Bump github.com/cloudflare/cfssl from 0.0.0-20180724182639-74781550e7f0 to 1.6.4 #342

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps github.com/cloudflare/cfssl from 0.0.0-20180724182639-74781550e7f0 to 1.6.4.

Release notes

Sourced from github.com/cloudflare/cfssl's releases.

v1.6.4

Changelog

  • b37103e Add support to multi architecture docker image using a github action
  • fa8441a Binary enablement for s390x
  • 00a28f6 Improve IPv6 address handling in ocspserve
  • 51a7fa8 Make api intro.txt references links
  • 123abe0 Merge pull request #1187 from jonathanio/improve-ocspserve-ipv6-handling
  • b553d93 Merge pull request #1254 from thaJeztah/remove_go1.12_support
  • cfd0e9a Merge pull request #1255 from thaJeztah/update_gomod
  • a4a432b Merge pull request #1257 from thaJeztah/remove_goutils
  • c71f9f6 Merge pull request #1258 from thaJeztah/remove_ioutils
  • 37715e7 Merge pull request #1259 from sonork/master
  • 2ac5c8a Merge pull request #1260 from linux-on-ibm-z/s390x-binary-enablement
  • c5e40da Merge pull request #1262 from thaJeztah/remove_go_net
  • 6b3f233 Merge pull request #1267 from shahidhs-ibm/s390x-multiarch
  • a8697b2 Merge pull request #1273 from ehershey/patch-2
  • 4db924a Merge pull request #1274 from cloudflare/dependabot/go_modules/golang.org/x/net-0.7.0
  • b4d0d87 Merge pull request #1277 from cloudflare/nicky/docker
  • cf63dcb Update Dockerfile
  • 8467879 Update Makefile
  • 39c4590 add arm64 on all linux binaries
  • d90536d all: gofmt for go1.18 (fixes missing build-tags)
  • 941a1cd api: replace uses of deprecated io/ioutil
  • 2bc4f21 auth: replace uses of deprecated io/ioutil
  • fcde786 build(deps): bump golang.org/x/net from 0.2.0 to 0.7.0
  • 6f34ba0 bundler: replace uses of deprecated io/ioutil
  • 7025962 certdb: replace uses of deprecated io/ioutil
  • 7c1b358 certinfo: replace uses of deprecated io/ioutil
  • 45225c2 cli: replace uses of deprecated io/ioutil
  • fc8619e cmd: replace uses of deprecated io/ioutil
  • 77a52e7 config: replace uses of deprecated io/ioutil
  • 31652f3 crl: replace uses of deprecated io/ioutil
  • 62ebbe3 csr: replace uses of deprecated io/ioutil
  • 68b96f8 doc: remove mention of deprecated io/ioutil
  • 59534b3 go.mod: github.com/cloudflare/redoctober v0.0.0-20211013234631-6a74ccc611f6
  • 0cb76ce go.mod: github.com/google/certificate-transparency-go v1.1.4
  • 1ddff47 go.mod: github.com/jmhodges/clock v1.2.0
  • 052932c go.mod: github.com/matttproud/golang_protobuf_extensions v1.0.2
  • 3eb1f29 go.mod: golang.org/x/crypto v0.3.0
  • 706ae75 go.mod: golang.org/x/net v0.2.0
  • 28c127e go.mod: tidy and vendor with go1.18
  • 879b1d3 helpers/derhelpers: remove support for go1.12
  • b27c723 helpers: replace uses of deprecated io/ioutil
  • 188cfa4 include linux/arm64 in builds
  • df5893e initca: replace uses of deprecated io/ioutil
  • 9d4d8c6 multiroot: replace uses of deprecated io/ioutil
  • 5b8919c ocsp: replace uses of deprecated io/ioutil
  • 6e8b031 push images to github/docker container registry
  • 1c31e68 remove deprecated golint (golang.org/x/lint)
  • c094402 remove docker socket volume mount

... (truncated)

Changelog

Sourced from github.com/cloudflare/cfssl's changelog.

1.1.0 - 2015-08-04

ADDED: - Revocation now checks OCSP status. - Authenticated endpoints are now supported using HMAC tags. - Bundle can verify certificates against a domain or IP. - OCSP subcommand has been added. - PKCS #11 keys are now supported; this support is now the default. - OCSP serving is now implemented. - The multirootca tool is now available for multiple signing keys via an authenticated API. - A scan utility for checking the quality of a server's TLS configuration. - The certificate bundler now supports PKCS #7 and PKCS #12. - An info endpoint has been added to retrieve the signers' certificates. - Signers can now use a serial sequence number for certificate serial numbers; the default remains randomised serial numbers. - CSR whitelisting allows the signer to explicitly distrust certain fields in a CSR. - Signing profiles can include certificate policies and their qualifiers. - The multirootca can use Red October-secured private keys. - The multirootca can whitelist CSRs per-signer based on an IP network whitelist. - The signer can whitelist SANs and common names via a regular- expression whitelist. - Multiple fallback remote signers are now supported in the cfssl server. - A Docker build script has been provided to facilitate building CFSSL for all supported platforms. - The log package includes a new logging level, fatal, that immediately exits with error after printing the log message.

CHANGED: - CLI tool can read from standard input. - The -f flag has been renamed to -config. - Signers have been refactored into local and remote signers under a single universal signer abstraction. - The CLI subcommands have been refactored into separate packages. - Signing can now extract subject information from a CSR. - Various improvements to the certificate ubiquity scoring, such as accounting for SHA1 deprecation. - The bundle CLI tool can set the intermediates directory that newly found intermediates can be stored in. - The CLI tools return exit code 1 on failure.

CONTRIBUTORS: Alice Xia

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codecov-commenter commented 1 year ago

Codecov Report

Merging #342 (65dab12) into master (5c832e6) will increase coverage by 0.13%. The diff coverage is 33.33%.

@@            Coverage Diff             @@
##           master     #342      +/-   ##
==========================================
+ Coverage   32.47%   32.61%   +0.13%     
==========================================
  Files           9        9              
  Lines        1521     1521              
==========================================
+ Hits          494      496       +2     
+ Misses        975      973       -2     
  Partials       52       52
Impacted Files Coverage Δ
client/client.go 29.05% <33.33%> (ø)

... and 1 file with indirect coverage changes