Commit 97e0974
authored
Replace ct_server with TesseraCT in setup (#1793)
In the setup scaffolding workflow, update Fulcio to use the Static CT
log TesseraCT instead of the Trillian-based ct_server.
This change avoids retrieving the Fulcio roots from the rootCert
endpoint, instead favoring using the known externally generated root,
which closer simulates the mechanism for distributing key material out
of band via TUF. This means the createctconfig job is not needed for
this CT log. The createtree job is also no longer needed because there
is no Trillian tree to manage.
Signed-off-by: Colleen Murphy <[email protected]>1 parent b8fd9b4 commit 97e0974
File tree
27 files changed
+96
-757
lines changed- .github/workflows
- config
- ctlog
- certs
- createtree
- ctlog
- fulcio/fulcio
- hack
- testdata/config
- add-new-fulcio
- new-fulcio/fulcio
- remove-old-fulcio
- tools/ctlog/cmd/ctlog/verifyfulcio
27 files changed
+96
-757
lines changedThis file was deleted.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
17 | 17 | | |
18 | 18 | | |
19 | 19 | | |
20 | | - | |
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
34 | 34 | | |
35 | 35 | | |
36 | 36 | | |
37 | | - | |
38 | | - | |
39 | | - | |
40 | | - | |
41 | | - | |
42 | | - | |
43 | | - | |
44 | | - | |
45 | | - | |
46 | | - | |
47 | | - | |
48 | | - | |
49 | | - | |
50 | | - | |
51 | | - | |
52 | 37 | | |
53 | 38 | | |
54 | 39 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
132 | 132 | | |
133 | 133 | | |
134 | 134 | | |
135 | | - | |
| 135 | + | |
136 | 136 | | |
137 | 137 | | |
138 | 138 | | |
| |||
146 | 146 | | |
147 | 147 | | |
148 | 148 | | |
149 | | - | |
150 | | - | |
151 | | - | |
152 | | - | |
153 | 149 | | |
154 | 150 | | |
155 | 151 | | |
| |||
0 commit comments