rcgen
rcgen copied to clipboard
rustls
Generate X.509 certificates
Motivation #274, based off https://github.com/rustls/rcgen/pull/269#issuecomment-2079282218 Still required before merge: - [ ] Finalise the API requirements - [ ] Implement it all - [ ] Documentation comments - [ ]...
I'm in the process of upgrading rcgen and I have to say the new API is much easier to understand, great job! In reading some of the #62 I can...
Hi, After creating a certificate with several X509v3 extensions (e.g. X509v3 Extended Key Usage: TLS Web Client Authentication), I create a certificate signing request using e.g. `certificate.serialize_request_der()` However, the certificate...
Make PKCS_RSA_PSS_SHA256 a publicly accessible algorithm so that CSRs can be created for RSA PSS. This has been tested with [https://github.com/parallaxsecond/parsec](parsec) on this [parsec-tool PR with the patched rcgen crate](https://github.com/parallaxsecond/parsec-tool/pull/128)....
https://github.com/rustls/rustls/issues/1540 in rustls provides a mechanism to plug in arbitrary crypto providers. While the in-tree ones only have `ring` and `aws_lc_rs`, mirroring rcgen, there are out of tree providers that...
Hello, I'm currently building a small PoC using this Library and stumbled upon the following error: I have generated three Certificates (Root, Intermediate,Leave) and key pairs. The blockage reveals itself...
In #264 code is pretty ugly because we're keeping track of whether an EKU already exists in the `Vec` that we hold. Should `CertificateParams::key_usages` and `extended_key_usages` be `HashSet` instead? -...
Seems to have been an oversight. This is a breaking change so probably want to hold off on that for a bit?
Being able to `clone()` `KeyPair`, `CertificateParams` and `Certificate` would help a great deal in some situations. Right now the only solution seems to serialize and then deserialize again
