Skip to content

Support encoding and decoding trust stores#10

Merged
AGWA merged 1 commit intoSSLMate:masterfrom
lulf:support-truststore-codec
Apr 8, 2020
Merged

Support encoding and decoding trust stores#10
AGWA merged 1 commit intoSSLMate:masterfrom
lulf:support-truststore-codec

Conversation

@lulf
Copy link
Copy Markdown
Contributor

@lulf lulf commented Apr 4, 2020

No description provided.

@lulf lulf mentioned this pull request Apr 4, 2020
Closed
@lulf
Copy link
Copy Markdown
Contributor Author

lulf commented Apr 8, 2020
edited
Loading

@AGWA Could you have a look at this PR?

AGWA
AGWA requested changes Apr 8, 2020
View reviewed changes
Copy link
Copy Markdown
Member

@AGWA AGWA left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks pretty good. I requested a few small changes.

@lulf
Copy link
Copy Markdown
Contributor Author

lulf commented Apr 8, 2020

@AGWA I pushed a commit that addresses your review comments so far. Let me know if/when you want me to squash the commits.

@AGWA
Copy link
Copy Markdown
Member

AGWA commented Apr 8, 2020

@luluF looks good, thanks! Please do go ahead and squash.

@lulf lulf force-pushed the support-truststore-codec branch from 2e563d6 to 7b650a0 Compare April 8, 2020 18:07
@lulf
Copy link
Copy Markdown
Contributor Author

lulf commented Apr 8, 2020

@AGWA Done, thank you for taking the time to review.

@lulf lulf requested a review from AGWA April 8, 2020 18:07
@AGWA AGWA merged commit 7b650a0 into SSLMate:master Apr 8, 2020
@AGWA
Copy link
Copy Markdown
Member

AGWA commented Apr 8, 2020

Thank you for your contribution, @lulf! BTW, I just realized that DecodeTrustStore ought to be checking for the attribute so it can take advantage of the safety feature too, so I quickly coded that up (2981468)

@lulf lulf deleted the support-truststore-codec branch April 8, 2020 18:56
AGWA added a commit that referenced this pull request Jul 14, 2023
@AGWA
Support encoding with different parameters
6046295 
Instead of calling pkcs12.Encode, call the Encode method of an Encoder.
(Likewise for EncodeTrustStore and EncodeTrustStoreEntries.)

The following Encoders are available:

* Legacy, for the current behavior.

* LegacyDESCerts, to use 3DES for encrypting certificates (Closes #36, Closes #35).

* Passwordless, to create password-less trust stores like Java 18 (Closes #10).

* Openssl3, to match OpenSSL's modern algorithm choices (Closes #47).

* Modern, to always use the most modern choices.
@AGWA AGWA added the feature label Jul 15, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AGWA AGWA Awaiting requested review from AGWA

Assignees

No one assigned

Labels

feature

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@lulf @AGWA