Bernd Krietenstein
Bernd Krietenstein
`DigitalSignature` MUST be set in SCEP CA certificates according to RFC 8894: 2.1.2. Certificate Authority A SCEP CA is the entity that signs client certificates. A CA may enforce policies...
This branch adds support for parsing a challenge password attribute in a CSR. Please note: https://github.com/rusticata/oid-registry/pull/10 is a prerequisite, as it adds `OID_PKCS9_CHALLENGE_PASSWORD`. This PR is merged, but not yet...
### Summary In case of a `lock()` function returning multiple locks, the lint may assert though the code behaves as intended. E.g. ```rust struct Broker {...}; impl Broker { pub...
This provides a builder for CMS' `PasswordRecipientInfo` according to RFC 3211. In contrast to the `KeyTransRecipientInfoBuilder` the key-encryption algorithm must be provided by the user (who has to provide an...
**Describe the Bug** EJBCA-CE (ephemeral docker version) throws exception for a SCEP PkcsReq request. **To Reproduce** Steps to reproduce the behavior: 1. Run EJBCA-CE in a docker container as described...
When creating an installer for a shared object (`libmylib.so`), `cargo deb` currently installs `libmylib.so`. But according to the debian policy it should be something like this: ``` user@mymachine:/dev$ ls -l...
This is my real-world test of a BER encoded CMS message using indefinite lengths. I removed the content, but kept the structure. This kind of messages is sent by EJBCA...