Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

dns-certify-mirage: use X509.Private_key.of_string #330

Merged
merged 1 commit into from
Feb 15, 2023

Conversation

hannesm
Copy link
Member

@hannesm hannesm commented Dec 27, 2022

the only semantic difference is when neither "key_data" nor "key_seed" is provided, in which case we error out now.

I think that's fine (I checked all cloned unikernels on my hard drive), but am happy to hear other thoughts.

@hannesm hannesm merged commit 426abf4 into mirage:main Feb 15, 2023
@hannesm hannesm deleted the x509-0.15.2 branch February 15, 2023 15:42
hannesm added a commit to hannesm/opam-repository that referenced this pull request Feb 16, 2023
…er, dns-mirage, dns-client, dns-client-mirage, dns-client-lwt, dns-cli and dns-certify (7.0.0)

CHANGES:

* BREAKING: dns-client is split into 3 packages: dns-client-lwt,
  dns-client-mirage. If your dune file contains dns-client.lwt, use
  dns-client-lwt now. If your dune file contains dns-client.mirage, use
  dns-client-mirage now (mirage/ocaml-dns#331 @hannesm)
* update to mirage-crypto 0.11.0 API changes and tls 0.16.0 packaging changes
  (mirage/ocaml-dns#331 @hannesm)
* dns-client.resolvconf: add line number to parser (mirage/ocaml-dns#334 @hannesm, inspired by
  mirage/ocaml-dns#328 @bikallem)
* dns-client.resolvconf: allow zone idx (RFC 4007) for IPv6 entries
  (mirage/ocaml-dns#334 @hannesm, inspired by mirage/ocaml-dns#328 @bikallem)
* dns-server.zone: allow zone files without final newline (add a newline to the
  buffer if the last character is not \n) (mirage/ocaml-dns#333 @hannesm)
* dns-client-{lwt,mirage}: do not log when the resolver closed the connection,
  but there are no pending requests (mirage/ocaml-dns#332 @reynir)
* dns-certify: in Dns_certify_mirage use X509.Private_key.of_string, the
  behaviour when both key_data and key_seed is provided changed, and leads to
  an exception now (mirage/ocaml-dns#330 @hannesm)
hannesm added a commit to hannesm/opam-repository that referenced this pull request Feb 16, 2023
…er, dns-mirage, dns-client, dns-client-mirage, dns-client-lwt, dns-cli and dns-certify (7.0.0)

CHANGES:

* BREAKING: dns-client is split into 3 packages: dns-client-lwt,
  dns-client-mirage. If your dune file contains dns-client.lwt, use
  dns-client-lwt now. If your dune file contains dns-client.mirage, use
  dns-client-mirage now (mirage/ocaml-dns#331 @hannesm)
* update to mirage-crypto 0.11.0 API changes and tls 0.16.0 packaging changes
  (mirage/ocaml-dns#331 @hannesm)
* dns-client.resolvconf: add line number to parser (mirage/ocaml-dns#334 @hannesm, inspired by
  mirage/ocaml-dns#328 @bikallem)
* dns-client.resolvconf: allow zone idx (RFC 4007) for IPv6 entries
  (mirage/ocaml-dns#334 @hannesm, inspired by mirage/ocaml-dns#328 @bikallem)
* dns-server.zone: allow zone files without final newline (add a newline to the
  buffer if the last character is not \n) (mirage/ocaml-dns#333 @hannesm)
* dns-client-{lwt,mirage}: do not log when the resolver closed the connection,
  but there are no pending requests (mirage/ocaml-dns#332 @reynir)
* dns-certify: in Dns_certify_mirage use X509.Private_key.of_string, the
  behaviour when both key_data and key_seed is provided changed, and leads to
  an exception now (mirage/ocaml-dns#330 @hannesm)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant