Skip to content

Feature/crl extensions#84

Open
alnakschbandi wants to merge 21 commits into
mainfrom
feature/CRL-Extensions
Open

Feature/crl extensions#84
alnakschbandi wants to merge 21 commits into
mainfrom
feature/CRL-Extensions

Conversation

@alnakschbandi

@alnakschbandi alnakschbandi commented Jun 16, 2026

Copy link
Copy Markdown

Adding support for CRL-related extensions:

  • CrlUtils class to generate CRLs according to the CrlConfig from X509-Attacker
  • Modified X509CertificateConfigUtil to add CRL Distribution Points (CRLDP) Extension to the default X509-Certficate (including the feature extractor). If the extension does not exist while OpenSSL is run CRL-related flags, the feature extractor will fail.
  • Modified TlsServerAuthVerifierAdapterDocker to include CRL-related flags for OpenSSL.
  • Modified X509CertificateChainGenerator to call the CRL-generation code for every chain.
  • Added rfc5280.json to include new crldp tests.
  • Modified Main to run and stop the server, and also remove the generated CRL files after the testing is finished. (Important note: since the server is only being started in Main, running a single test through JUnit will not work if the tests relies on the CRL being served. In the current implementation, the server is only started when running X509-Anvil from Main.)
  • modified the positive test to exclude "extensions_present" from the possible combinations.
  • Added various CRLDP related tests.

@alnakschbandi
Challenge Solution 20.10
e3bbbc6
@alnakschbandi
reverting unnecessary changes
64eacb8
@alnakschbandi
merging main
4103a31
@alnakschbandi
Merge the challenge into the new branch
be86a96
@alnakschbandi
Adding basic tests for Crl Distribution Points and Freshest Crl, Addi…
c4320f8 
…ng simple HTTP server to serve crl files
@alnakschbandi
Changing the BasicCRLDistributionPointsTests to test the newly added …
b025d99 
…structures to X.509-Attacker
@alnakschbandi
Adding two new tests + modifying the TlsServerAuthVerifierAdapterDock…
d2d678b 
…er.java to download crl files with openssl
@alnakschbandi
modifying TlsServerAuthVerifierAdapterDocker.java again with verify_r…
840dd56 
…eturn_error
@alnakschbandi
Adding the crldp extension to the initial certs for feature extraction
6637314
@alnakschbandi
Broken build: Trying to extract private keys and CAcerts in order to …
bf6acde 
…generate crls
@alnakschbandi
working version: extracting keys and generating CRLs from Java
44f6f89
@alnakschbandi
Cleaning up code, adding CrlUtils static class so the code is reusable
4df8cc9
@alnakschbandi
Cleaning up temp files after generating crls
1d9f8eb
@alnakschbandi
Using new unique identifier, restructing the CRL generation
6bd63d4
@alnakschbandi
Adding test cases and fixing old ones
d25ae6f
@alnakschbandi
Adding more tests using CRLConfig
0d6db12
@alnakschbandi
Tests cleanup
bc1bc08
@alnakschbandi
Test fixes
761773d
@alnakschbandi
Some cleanup and comments
47fc529
@alnakschbandi
Readding tests to rfc5280.json
34c5e1d
@alnakschbandi
Removing unused imports
8ae8797
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@FelixLange1998 FelixLange1998 Awaiting requested review from FelixLange1998

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@alnakschbandi