Adding Code in Boulder

preetham · March 13, 2017, 4:35am

Hi ,
Im having a boulder instance in my local server.

I need to edit the code and add an OID syntax. So when the certificate generates this OID should be included in my certificate. But this OID is not supported by letsencrypt. So im trying to add this as a static string or any kind of data in my generated certificates. But i want this in my certificates.

TNAuthorizationList ::= SEQUENCE SIZE (1…MAX) OF TNEntry

 TNEntry ::= CHOICE {
 spid   [0] ServiceProviderIdentifierList,
 range  [1] TelephoneNumberRange,
 one        E164Number }

How and which file i need to add this syntax to get this in my certificate.

Thanks in advance.

Osiris · March 13, 2017, 1:39pm

I have absolutely no clue to Go, but I know Let’s Encrypt has support for the Must Staple extension through the TLS Feature Extension.

It is handled in ca.go, so what I would suggest is look at the code here: https://github.com/letsencrypt/boulder/blob/master/ca/ca.go#L37

And just look at how the TLS Feature Extension is handled and try to copy and modify that.

preetham · March 16, 2017, 4:24am

Osiris,

I tried adding the OID similar to TLS feature as a Must Staple extension. But it doesn’t work.

Do you have any idea that where the structure of OID’s will be defined?

system · April 15, 2017, 4:24am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Regarding TL Authorization List extention Server	9	2000	April 9, 2017
Boulder - Custom Extension Causes: Extension unknown: DER encoded OCTET string Server	1	1962	April 26, 2017
Does the newline implementation matter? Client dev	11	2822	March 7, 2020
Let's Encrypt blog post feedback	2	1863	February 3, 2016
LetsEncrypt Client Pinning Client dev	4	2206	July 8, 2016

Adding Code in Boulder

Related topics