Bernd Krietenstein
Bernd Krietenstein
Added the RFC paragraph mentioning the `keyUsage` for SCEP CA certificates.
Updated to current main. Merging should be possible now. Thanks!
A remark @chifflier: I think, the attribute parsing could be improved. Currently, `X509CertificationRequest::from_der()` parses the CSR and knows the (challenge password) attribute's value. This value is held in `X509CriAttribute.parsed_attribute`, which...
I just compared `CriAttribute` to `X509Extension` and found ```rust impl { ... /// Return the extension type or `UnsupportedExtension` if the extension is not implemented. #[inline] pub fn parsed_extension(&self) ->...
I will check my proposal and set this request to draft.
@chifflier The checks will fail until oid-registry with OID for challenge password is released.
Changes are implemented. Thanks for reviewing!
> We've talked about introducing a lax mode to the `der` crate which supports a limited number of BER productions necessary to interop with real-world use cases like this. So...
FYI, I have implemented a simple parser/converter (`Berder`), that replaces all indefinite length specifications in a BER message by definite lengths. The parser recurses through the complete message (though there...