Skip to content

Commit

Permalink
_cli: tweak "helpful" error messages
Browse files Browse the repository at this point in the history 
Now that we manage keys with TUF, the most likely
error here is misconfiguration: someone asking
us to verify a sig/cert that was issued against
a different instance of Fulcio than we're verifying with.

Signed-off-by: William Woodruff <william@trailofbits.com>
  • Loading branch information
@woodruffw
woodruffw committed Jan 4, 2023
1 parent 92cec92 commit d95c093
Showing 1 changed file with 8 additions and 8 deletions.
16 changes: 8 additions & 8 deletions sigstore/_cli.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -776,11 +776,11 @@ def _verify_identity(args: argparse.Namespace) -> None:
print(
dedent(
f"""
This may be a result of an outdated `sigstore` installation.
The given certificate could not be verified against the
root of trust.
Consider upgrading with:
python -m pip install --upgrade sigstore
This may be a result of connecting to the wrong Fulcio instance
(for example, staging instead of production, or vice versa).
Additional context:
Expand Down Expand Up @@ -867,11 +867,11 @@ def _verify_github(args: argparse.Namespace) -> None:
print(
dedent(
f"""
This may be a result of an outdated `sigstore` installation.
The given certificate could not be verified against the
root of trust.
Consider upgrading with:
python -m pip install --upgrade sigstore
This may be a result of connecting to the wrong Fulcio instance
(for example, staging instead of production, or vice versa).
Additional context:
Expand Down

0 comments on commit d95c093

Please sign in to comment.