Support for OID 1.3.14.3.2.29 (sha1RSA) #825

dpwatrous · 2020-10-21T18:33:04Z

It looks like there is currently no handling of OID 1.3.14.3.2.29 (sha1RSA) , causing the following error to be thrown when computing a digest: "Could not compute certificate digest. Unknown signature OID."

I suspect the same code that handles 1.2.840.113549.1.1.5 would work here, and I'm happy to try to put together a PR for this, but any guidance would be appreciated!

dpwatrous · 2020-10-21T18:50:03Z

Looking at this issue in python's cryptography library seems to indicate we can treat this the same as 1.2.840.113549.1.1.5 (sha1WithRSAEncryption).

Because the id -> name and name -> id mappings are 1:1, we'd either have to change the structure of the maps or introduce a new name. I'm leaning toward the latter to limit the scope of the change.

dpwatrous · 2020-10-22T13:32:57Z

A couple more links to similar issues (which include more context):

Chromium: https://codereview.chromium.org/1223763002
Mozilla: https://bugzilla.mozilla.org/show_bug.cgi?id=1042479

davidlehn · 2022-01-07T18:27:24Z

Fixed in #940.

dpwatrous mentioned this issue Oct 21, 2020

Added alternate OID 1.3.14.3.2.29 for sha1 with RSA #826

Closed

davidlehn added this to the v0.11.x milestone Dec 29, 2021

davidlehn mentioned this issue Jan 7, 2022

Added alternate OID 1.3.14.3.2.29 for sha1 with RSA #940

Merged

davidlehn closed this as completed Jan 7, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Support for OID 1.3.14.3.2.29 (sha1RSA) #825

Support for OID 1.3.14.3.2.29 (sha1RSA) #825

dpwatrous commented Oct 21, 2020

dpwatrous commented Oct 21, 2020

dpwatrous commented Oct 22, 2020

davidlehn commented Jan 7, 2022

Support for OID 1.3.14.3.2.29 (sha1RSA) #825

Support for OID 1.3.14.3.2.29 (sha1RSA) #825

Comments

dpwatrous commented Oct 21, 2020

dpwatrous commented Oct 21, 2020

dpwatrous commented Oct 22, 2020

davidlehn commented Jan 7, 2022