[cosigned] Webhook error when trying to verify an image signed with RSA key #1729

oliviergaumond · 2022-04-09T16:44:28Z

Description

To reproduce:

Sign an image with an RSA key
Configure cosigned webhook with the RSA public key
Try to run a pod with signed image

The admission webhook returns an error

The following is found in the webhook logs
http: panic serving 192.168.172.222:42498: interface conversion: interface {} is *rsa.PublicKey, not *ecdsa.PublicKey\n

Expected behavior
As cosign supports RSA key, cosigned should also support them

The text was updated successfully, but these errors were encountered:

hectorj2f · 2022-04-10T01:09:59Z

Thanks for the issue @oliviergaumond. We’ ll check the weather

dlorenc · 2022-04-10T14:34:31Z

Yeah we probably missed a few refactors to support the genetic Verifier stuff.

oliviergaumond added the bug Something isn't working label Apr 9, 2022

hectorj2f self-assigned this Apr 11, 2022

hectorj2f mentioned this issue Apr 17, 2022

cosigned: add support for rsa keys #1768

Merged

dlorenc closed this as completed in #1768 Apr 17, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[cosigned] Webhook error when trying to verify an image signed with RSA key #1729

[cosigned] Webhook error when trying to verify an image signed with RSA key #1729

oliviergaumond commented Apr 9, 2022

hectorj2f commented Apr 10, 2022

dlorenc commented Apr 10, 2022

[cosigned] Webhook error when trying to verify an image signed with RSA key #1729

[cosigned] Webhook error when trying to verify an image signed with RSA key #1729

Comments

oliviergaumond commented Apr 9, 2022

hectorj2f commented Apr 10, 2022

dlorenc commented Apr 10, 2022