Skip to content

PKCS#7 signing & verification - Certificate extension policies #13404

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 3 commits into from
Closed

PKCS#7 signing & verification - Certificate extension policies #13404

wants to merge 3 commits into from

Conversation

@prauscher
Copy link
Contributor

@prauscher prauscher commented Sep 5, 2025

This is a fork PR of #12465, which was created by @nitneuqr and adds verification of PKCS#7 (S/MIME) certificates. This fork rebases the PR to main and applies the patch given in the PR to avoid a custom ca.pem in tests.

forking as I lack permissions to apply the patch and rebase in @nitneuqr's repo. If we prefer to merge #12465 I will close this PR.

closes #12104

nitneuqr and others added 3 commits September 6, 2025 01:02
@nitneuqr @prauscher
feat: PKCS#7 extension policies
6dcaabb 
added tests accordingly

adapted the pkcs7 certificate

adapted EE policy

do not know if a CA policy is needed!

added SAN checking
@nitneuqr @prauscher
minor changes based on comments
339da50
@prauscher
apply patch to prepare after pyca#13376 was merged
3972305
@nitneuqr nitneuqr mentioned this pull request Sep 6, 2025
Open
@prauscher
Copy link
Contributor Author

prauscher commented Sep 6, 2025

closed to continue in #12465 :)

@prauscher prauscher closed this Sep 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

FR: Allow verification of SMIME-Certificates

2 participants

@prauscher @nitneuqr