-
-
Notifications
You must be signed in to change notification settings - Fork 9.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CMP: add support for requesting certReqTemplate using genm/genp #24409
base: master
Are you sure you want to change the base?
Conversation
CI is relevant |
473fc39
to
28621be
Compare
I closed it by mistake, I will reopen the pull request. |
28621be
to
61f0006
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thank you for the PR.
Looks generally pretty good.
Yet a number of small issues.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
A few things to be adapted further.
For this reason, a couple of issues above not yet marked resolved.
f45e5c6
to
27e0b1e
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Fine now, thanks for the swift fixes
This pull request adds the ability to retrieve a certificate request template in the CMP client, following the guidelines outlined in section 4.3.3 of RFC 9483.
To request the certificate request template, the CMP client can send a genm message with the
-infotype certReqTemplate
option. The server will respond with a genp message containing the CertTemplate and optionally the keySpec, using theid-it-certReqTemplate
. The client can then save the CertTemplate and KeySpec in a specified file using the-template
and-keyspec
parameters, respectively.Checklist