Skip to content

Commit

Permalink
Fix: correctly use chained certificates for AWS credential exchange
Browse files Browse the repository at this point in the history 
Signed-off-by: Noah Stride <noah.stride@goteleport.com>
  • Loading branch information
@strideynet
strideynet committed Feb 5, 2025
1 parent 7839538 commit d729c47
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion signer.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -110,7 +110,7 @@ func (s *X509SVIDSigner) Certificate() (*x509.Certificate, error) {
// the trust anchor.
// Implements the aws_signing_helper.Signer interface.
func (s *X509SVIDSigner) CertificateChain() ([]*x509.Certificate, error) {
if len(s.SVID.Certificates) < 1 {
if len(s.SVID.Certificates) > 1 {
return s.SVID.Certificates[1:], nil
}
return nil, nil
Expand Down

0 comments on commit d729c47

Please sign in to comment.