From 5f7e2d2f015a6ab2c54880d4adfdf7f150b4f13a Mon Sep 17 00:00:00 2001
From: Zach Steindler <steiza@github.com>
Date: Thu, 28 Mar 2024 15:21:58 -0400
Subject: [PATCH] Allow deprecated key type currently in use by staging
 infrastructure

Signed-off-by: Zach Steindler <steiza@github.com>
---
 pkg/root/trusted_root.go | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/pkg/root/trusted_root.go b/pkg/root/trusted_root.go
index 28d161d7..3101d1f6 100644
--- a/pkg/root/trusted_root.go
+++ b/pkg/root/trusted_root.go
@@ -154,7 +154,8 @@ func ParseTransparencyLogs(tlogs []*prototrustroot.TransparencyLogInstance) (tra
 				PublicKey:         ecKey,
 				SignatureHashFunc: crypto.SHA256,
 			}
-		case protocommon.PublicKeyDetails_PKCS1_RSA_PKCS1V5:
+		// This key format is deprecated, but currently in use for Sigstore staging instance
+		case protocommon.PublicKeyDetails_PKCS1_RSA_PKCS1V5: //nolint:staticcheck
 			key, err := x509.ParsePKCS1PublicKey(tlog.GetPublicKey().GetRawBytes())
 			if err != nil {
 				return nil, err