Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

support additional digest algorithms and the RFC-8954 nonce extension for custom OCSP URL validation #522

Open
emattheis opened this issue Dec 6, 2024 · 1 comment
Open

support additional digest algorithms and the RFC-8954 nonce extension for custom OCSP URL validation #522

emattheis opened this issue Dec 6, 2024 · 1 comment
Milestone
v5.6.0

Comments

@emattheis
Copy link
Contributor

The OCSP validation support in KeyStore explorer allows one to specify a custom responder URL for performing the OCSP check, but doesn't not support any further customization. In particular, OCSP requests are made using the SHA-1 digest algorithm and do not include the nonce extension. I would like to see KeyStore Explorer offer the ability to use the SHA-256, SHA-384, or SHA-512 algorithms and include the nonce extension in the request.

I have implemented this feature and will be submitting a PR shortly.
@emattheis emattheis mentioned this issue Dec 6, 2024
Merged
kaikramer pushed a commit that referenced this issue Dec 8, 2024
@emattheis
support more digest algorithms and nonce extension with OCSP URL (issue
4bb8b68 
#522)
@kaikramer
Copy link
Owner

Thank you, that's a very useful improvement fror KSE! Much appreciated

@kaikramer kaikramer added this to the v5.6.0 milestone Dec 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v5.6.0
Development

No branches or pull requests
2 participants
@kaikramer @emattheis