Skip to content

TrustCAContent: install an in-memory PEM CA in one step (v0.11.0)#6

Merged
Booyaka101 merged 1 commit into
mainfrom
feat/trust-ca-content
Jun 10, 2026
Merged

TrustCAContent: install an in-memory PEM CA in one step (v0.11.0)#6
Booyaka101 merged 1 commit into
mainfrom
feat/trust-ca-content

Conversation

@Booyaka101

Copy link
Copy Markdown
Owner

Adds porter.TrustCAContent(pem).As(anchor) — write PEM into the trust dir (0644, sudo) + update-ca-certificates in one action. Complements TrustCA. Tested; build/vet/staticcheck clean.

🤖 Generated with Claude Code

…store (v0.11.0)

Adds porter.TrustCAContent(pem).As(anchor): writes the PEM straight into
/usr/local/share/ca-certificates/<anchor>.crt (atomically, 0644, sudo) and runs
update-ca-certificates — one step, no pre-staged file. Complements the existing
TrustCA (which trusts a cert already on the remote). For fleets that distribute
their own CA root held in memory (e.g. PKI device enrollment).

Tested (builder + runtime via the fake runner). Build/vet/staticcheck/gofmt clean.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
@Booyaka101 Booyaka101 merged commit cdc6cb7 into main Jun 10, 2026
1 of 2 checks passed
@Booyaka101 Booyaka101 deleted the feat/trust-ca-content branch June 10, 2026 05:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants