Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for DoD certificate policy OIDs. #8599

Open
wants to merge 9 commits into
base: master
Choose a base branch
from
Open

Add support for DoD certificate policy OIDs. #8599

wants to merge 9 commits into from
+1,039 −7

Conversation

kareem-wolfssl
Copy link
Contributor

Description

Add support for all certificate policy OIDs listed in the DoD document: https://dl.dod.cyber.mil/wp-content/uploads/pki-pke/txt/unclass-pki_interop_assurance_levels.txt

Fixes zd#19563

Testing

Added new certificate with all OIDs from document.

Checklist

  • added tests
  • updated/added doxygen
  • updated appropriate READMEs
  • Updated manual and documentation

Sorry, something went wrong.

@kareem-wolfssl kareem-wolfssl self-assigned this Mar 27, 2025
@kareem-wolfssl
Add support for ISRG domain validated certificate policy OID (used by…
Loading
Loading status checks…
b803a03 
… Let's Encrypt). Fixes libspdm test failure.
@kareem-wolfssl
Copy link
Contributor Author

Note for reviewer: I did consider merging all of the cert policy OIDs into the current FPKI test cert rather than making a new one, let me know what you think.

JacobBarthelmeh
JacobBarthelmeh previously approved these changes Mar 31, 2025
View reviewed changes
Copy link
Contributor

@JacobBarthelmeh JacobBarthelmeh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks good. I want to make sure we should not be doing more than just parsing the OID's.

@kareem-wolfssl
Add comment clarifying that DoD certificate policy OIDs are not curre…
Loading
Loading status checks…
8e9a986 
…ntly being parsed in the code, they are just recognized as valid OIDs.
@JacobBarthelmeh
Copy link
Contributor

Retest this please Jenkins

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@JacobBarthelmeh JacobBarthelmeh

At least 1 approving review is required to merge this pull request.

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@kareem-wolfssl @JacobBarthelmeh @wolfSSL-Bot