New NID for acmeIdentifier

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

New NID for acmeIdentifier

Angus Robertson - Magenta Systems Ltd
Is it possible for a new NID and object to be added to support creating
and checking the Let's Encrypt ACME TLS-ALPN-01 challenge in which a
temporary X509 certificate is created with a specific X509v3 extension
containing shared information.

Currently, I get a new NID with:

OBJ_create('1.3.6.1.5.5.7.1.31','acmeIdentifier','X509v3 ACME
Identifier')

Angus



Reply | Threaded
Open this post in threaded view
|

Re: New NID for acmeIdentifier

Dr Paul Dale
This would require a line in crypto/objects/objects.txt and a "make update”.
A pull request would be the way to get this in.

Pauli
-- 
Dr Paul Dale | Distinguished Architect | Cryptographic Foundations 
Phone +61 7 3031 7217
Oracle Australia




On 26 Aug 2020, at 11:41 pm, Angus Robertson - Magenta Systems Ltd <[hidden email]> wrote:

Is it possible for a new NID and object to be added to support creating
and checking the Let's Encrypt ACME TLS-ALPN-01 challenge in which a
temporary X509 certificate is created with a specific X509v3 extension
containing shared information.

Currently, I get a new NID with:

OBJ_create('1.3.6.1.5.5.7.1.31','acmeIdentifier','X509v3 ACME
Identifier')

Angus