Public bug reported:
GET /v2/assertions returns "a stream of assertions separated by double
newlines", however an assertion uses double newlines as separators,
which means a snapd client can't determine the difference between the
parts of an assertion (either header+signature or
header+body+signature).
For example, the response could be:
<header1>
<signature1>
<header2>
<signature2>
OR
<header1>
<body1>
<signature1>
<header2>
<signature2>
In this case the client can't reliably determine if the body1 is a
signature or an assertion body.
** Affects: snappy
Importance: Undecided
Status: New
** Affects: snapd (Ubuntu)
Importance: Undecided
Status: New
** Also affects: snappy
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1665184
Title:
Assertion list returned by GET /v2/assertions/type can't be reliably
split
To manage notifications about this bug go to:
https://bugs.launchpad.net/snappy/+bug/1665184/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
