Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[3.2-g] Update github.com/russellhaering/goxmldsig to v1.1.0 #4452

Merged
merged 10 commits into from
Oct 5, 2020
+147,385 −41,844
Merged

[3.2-g] Update github.com/russellhaering/goxmldsig to v1.1.0 #4452

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
026a49f
Re-sync branch e-ref
klizhentas Jan 10, 2020
9db8652
Fix role mapping for trusted clusters
klizhentas Jan 9, 2020
aba583b
Updated CHANGELOG.md.
russjones Jan 15, 2020
7ad7dd7
Release 3.2.15.
russjones Jan 15, 2020
9f1f727
Revendor golang.org/x/crypto.
russjones Feb 21, 2020
8f844c8
Updated CHANGELOG.md.
russjones Feb 21, 2020
5e062a4
Release 3.2.16.
russjones Feb 21, 2020
a355800
Merge remote-tracking branch 'origin/branch/3.2' into kevin/3.2-g/GHS…
Oct 5, 2020
3b79611
Update github.com/russellhaering/goxmldsig to v1.1.0
Sep 29, 2020
1efe79e
set version to 3.2.17-gravity
Oct 5, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
The table of contents is too big for display.
Diff view
Diff view
  •  
  •  
  •  
12 changes: 12 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,17 @@
# Changelog

## 3.2.16

This release of Teleport contains a security fix.

* Mitigated [CVE-2020-9283](https://groups.google.com/forum/#!msg/golang-announce/3L45YRc91SY/ywEPcKLnGQAJ) by updating golang.org/x/crypto.

## 3.2.15

This release of Teleport contains a bug fix.

* Fixed a regression in role mapping between trusted clusters. [#3252](https://github.com/gravitational/teleport/issues/3252)

## 3.2.14

This release of Teleport contains a bug fix and a feature.
Expand Down
67 changes: 10 additions & 57 deletions Gopkg.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@
# Naming convention:
# for stable releases we use "1.0.0" format
# for pre-releases, we use "1.0.0-beta.2" format
VERSION=3.2.14
VERSION=3.2.17-gravity

# These are standard autotools variables, don't change them please
BUILDDIR ?= build
Expand Down
2 changes: 1 addition & 1 deletion e
Open in desktop
Submodule e updated from 4360a9 to 03bcd0
18 changes: 10 additions & 8 deletions lib/services/saml.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -540,15 +540,17 @@ func (o *SAMLConnectorV2) GetServiceProvider(clock clockwork.Clock) (*saml2.SAML
}

for _, kd := range metadata.IDPSSODescriptor.KeyDescriptors {
certData, err := base64.StdEncoding.DecodeString(kd.KeyInfo.X509Data.X509Certificate.Data)
if err != nil {
return nil, trace.Wrap(err)
}
cert, err := x509.ParseCertificate(certData)
if err != nil {
return nil, trace.Wrap(err, "failed to parse certificate in metadata")
for _, samlCert := range kd.KeyInfo.X509Data.X509Certificates {
certData, err := base64.StdEncoding.DecodeString(strings.TrimSpace(samlCert.Data))
if err != nil {
return nil, trace.Wrap(err)
}
cert, err := x509.ParseCertificate(certData)
if err != nil {
return nil, trace.Wrap(err, "failed to parse certificate in metadata")
}
certStore.Roots = append(certStore.Roots, cert)
}
certStore.Roots = append(certStore.Roots, cert)
}
o.Spec.Issuer = metadata.EntityID
o.Spec.SSO = metadata.IDPSSODescriptor.SingleSignOnService.Location
Expand Down
Loading