Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🛠️ [TASK] : rust/c509-certificate updates to the latest RFC Draft (11) #19

Closed
8 tasks done
bkioshn opened this issue Sep 10, 2024 · 0 comments · Fixed by #22
Closed
8 tasks done

🛠️ [TASK] : rust/c509-certificate updates to the latest RFC Draft (11) #19

bkioshn opened this issue Sep 10, 2024 · 0 comments · Fixed by #22
Assignees
@bkioshn
Labels
documentation Improvements or additions to documentation enhancement New feature or request

Comments

@bkioshn
Copy link
Contributor

bkioshn commented Sep 10, 2024
edited
Loading

Summary

c509 certificate updates to the latest RFC Draft (11)

Description

Update the C509 certificate to the latest RFC Draft 11

The current implementation is based on Draft 9.
Update the code to fit the Draft 11. https://datatracker.ietf.org/doc/draft-ietf-cose-cbor-encoded-cert/11/

Changes made from version 9 vs 11:

  • OID PEN is removed
  • Fix type time, should be unsigned integer
  • Msg field version - the type can be a natively signed C509 certificate following X.509 v3 (c509CertificateType = 2) or a CBOR re-encoded X.509 v3 DER certificate (c509CertificateType = 3)
  • issuer -> if issuer same as subject, issuer is set to null
  • subject shouldn’t be null
  • Relative distinguished name is removed
  • Update documents
  • New TBSCertificate
 TBSCertificate = (
       c509CertificateType: int,
       certificateSerialNumber: CertificateSerialNumber,
        issuerSignatureAlgorithm: AlgorithmIdentifier,
       issuer: Name / null,
       validityNotBefore: ~time,
       validityNotAfter: ~time / null,
       subject: Name,
       subjectPublicKeyAlgorithm: AlgorithmIdentifier,
       subjectPublicKey: any,
       extensions: Extensions,
    )
@bkioshn bkioshn self-assigned this Sep 10, 2024
@bkioshn bkioshn added documentation Improvements or additions to documentation enhancement New feature or request labels Sep 10, 2024
@bkioshn bkioshn changed the title 🛠️ [TASK] : c509 certificate updates to the latest RFC Draft (11) 🛠️ [TASK] : rust/c509-certificate updates to the latest RFC Draft (11) Sep 10, 2024
@bkioshn bkioshn mentioned this issue Sep 12, 2024
Merged
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@bkioshn bkioshn

Labels
documentation Improvements or additions to documentation enhancement New feature or request
Projects
Catalyst
Archived in project
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(rust/c509-certificate): Update to version 11 input-output-hk/catalyst-libs
1 participant
@bkioshn