self-hosted/minio
self-hosted/minio
1
0
Fork 0
mirror of https://github.com/minio/minio synced 2024-10-01 13:44:10 +00:00
Code Issues Packages Projects Releases Wiki Activity
minio/internal
History
Andreas Auernhammer 7ce28c3b1d
kms: use GetClientCertificate callback for KES API keys (#19921) 
This commit fixes an issue in the KES client configuration
that can cause the following error when connecting to KES:
```
ERROR Failed to connect to KMS: failed to generate data key with KMS key: tls: client certificate is required
```

The Go TLS stack seems to not send a client certificate if it
thinks the client certificate cannot be validated by the peer.
In case of an API key, we don't care about this since we use
public key pinning and the X.509 certificate is just a transport
encoding.

The `GetClientCertificate` seems to be honored always such that
this error does not occur.

Signed-off-by: Andreas Auernhammer <github@aead.dev>
2024-06-12 07:31:26 -07:00
..
amztime add codespell action (#18818) 2024-01-17 23:03:17 -08:00
arn Add more tests for ARN and its format (#19408) 2024-04-04 01:31:34 -07:00
auth Restrict access keys for users and groups to not allow '=' or ',' (#19749) 2024-05-28 10:14:16 -07:00
bpool Reduce parallelReader allocs (#19558) 2024-04-19 09:44:59 -07:00
bucket ldap: Add user DN attributes list config param (#19758) 2024-05-24 16:05:23 -07:00
cachevalue Add cluster config metrics in metrics-v3 (#19507) 2024-05-24 05:50:46 -07:00
color add logrotate support for MinIO logs (#19641) 2024-05-01 10:57:52 -07:00
config change service account embedded policy size limit (#19840) 2024-05-30 11:10:41 -07:00
crypto Fix replication checksum transfer (#19906) 2024-06-10 10:40:33 -07:00
deadlineconn Add sufficient deadlines and countermeasures to handle hung node scenario (#19688) 2024-05-22 16:07:14 -07:00
disk Read drive IO stats from sysfs instead of procfs (#19131) 2024-02-26 11:34:50 -08:00
dsync ldap: Add user DN attributes list config param (#19758) 2024-05-24 16:05:23 -07:00
etag fix: some flyby typos in the code (#19212) 2024-03-10 14:09:36 -07:00
event kafka: _MINIO_KAFKA_DEBUG to enable sarama debug messages (#19849) 2024-06-01 08:02:59 -07:00
fips disable builds for go1.18 (#16332) 2022-12-30 11:37:07 -08:00
grid Fix replication checksum transfer (#19906) 2024-06-10 10:40:33 -07:00
handlers send proper IPv6 names avoid bracketing notation (#18699) 2023-12-21 16:56:55 -08:00
hash Accept multipart checksums with part count (#19680) 2024-05-08 09:18:34 -07:00
http add changes to Makefile to support dev build 2024-06-10 10:41:02 -07:00
init force all internal MinIO operations to be under UTC (#16009) 2022-11-04 16:44:38 -07:00
ioutil Add sufficient deadlines and countermeasures to handle hung node scenario (#19688) 2024-05-22 16:07:14 -07:00
jwt allow JWT parsing on large session policy based tokens (#17167) 2023-05-09 00:53:08 -07:00
kms kms: use GetClientCertificate callback for KES API keys (#19921) 2024-06-12 07:31:26 -07:00
lock fix: linter errors in Windows specific code (#18276) 2023-10-18 11:08:15 -07:00
logger race: Fix detected test race in the internal audit code (#19865) 2024-06-03 08:44:50 -07:00
lsync cleanup Go linter settings (#16736) 2023-03-04 20:57:35 -08:00
mcontext Add X-Amz-Request-Id to internode calls (#16146) 2022-12-06 09:27:26 -08:00
mountinfo add codespell action (#18818) 2024-01-17 23:03:17 -08:00
net fix: return error when requested interface has no stats available (#17666) 2023-07-17 01:14:01 -07:00
once Support persistent queue store for loggers (#17121) 2023-05-08 21:20:31 -07:00
pubsub Fix tracing send on closed channel (#18982) 2024-02-06 08:57:30 -08:00
rest ldap: Add user DN attributes list config param (#19758) 2024-05-24 16:05:23 -07:00
ringbuffer Add PutObject Ring Buffer (#19605) 2024-05-14 17:11:04 -07:00
s3select ldap: Add user DN attributes list config param (#19758) 2024-05-24 16:05:23 -07:00
store Webhook targets refactor and bug fixes (#19275) 2024-03-25 09:44:20 -07:00