From 2e86983a77d02a38ef0485ebe7ab05c1c98a7685 Mon Sep 17 00:00:00 2001 From: Paul Kehrer Date: Mon, 11 Nov 2019 13:40:11 +0800 Subject: Parse single_extensions in OCSP responses (#5059) * add single_extensions to OCSPResponse (#4753) * new vector, updateed docs, more stringent parser, changelog, etc * simplify PR (no SCT for now) * add a comment * finish pulling out the sct stuff so tests might actually run --- docs/development/test-vectors.rst | 2 ++ docs/x509/ocsp.rst | 8 ++++++++ 2 files changed, 10 insertions(+) (limited to 'docs') diff --git a/docs/development/test-vectors.rst b/docs/development/test-vectors.rst index 9976d138..5b20b827 100644 --- a/docs/development/test-vectors.rst +++ b/docs/development/test-vectors.rst @@ -517,6 +517,8 @@ X.509 OCSP Test Vectors contains a revoked certificate and no ``nextUpdate`` value. * ``x509/ocsp/resp-invalid-signature-oid.der`` - An OCSP response that was modified to contain an MD2 signature algorithm object identifier. +* ``x509/ocsp/resp-single-extension-reason.der`` - An OCSP response that + contains a ``CRLReason`` single extension. Custom X.509 OCSP Test Vectors ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ diff --git a/docs/x509/ocsp.rst b/docs/x509/ocsp.rst index e28c05a7..80ff9908 100644 --- a/docs/x509/ocsp.rst +++ b/docs/x509/ocsp.rst @@ -601,6 +601,14 @@ Interfaces The extensions encoded in the response. + .. attribute:: single_extensions + + .. versionadded:: 2.9 + + :type: :class:`~cryptography.x509.Extensions` + + The single extensions encoded in the response. + .. method:: public_bytes(encoding) :param encoding: The encoding to use. Only -- cgit v1.2.3