add certificate extensions, rename certificateExtensions to certificateFileExtentsions

Signed-off-by: Nicklas Körtge <[email protected]>

Author: n1ckl0sk0rtge

schema/bom-1.7.schema.json

@@ -5390,6 +5390,18 @@
                 "p12"
               ]
             },
+            "certificateFileExtension": {
+              "type": "string",
+              "title": "Certificate File Extension",
+              "description": "The file extension of the certificate.",
+              "examples": [
+                "crt",
+                "pem",
+                "cer",
+                "der",
+                "p12"
+              ]
+            },
             "fingerprint": {
               "type": "object",
               "$ref": "#/definitions/hash",
@@ -5494,19 +5506,42 @@
                 "oneOf": [
                   {
                     "title": "Common Extensions",
-                    "required": ["extension"],
+                    "required": ["name", "value"],
                     "additionalProperties": false,
                     "properties": {
-                      "extension": {
+                      "name": {
                         "type": "string",
-                        "title": "Extension",
-                        "description": "",
+                        "title": "name",
+                        "description": "Extention name",
                         "enum": [
-                          "",
+                          "basicConstraints",
+                          "keyUsage",
+                          "extendedKeyUsage",
+                          "subjectAlternativeName",
+                          "authorityKeyIdentifier",
+                          "subjectKeyIdentifier",
+                          "authorityInformationAccess",
+                          "certificatePolicies",
+                          "crlDistributionPoints",
+                          "signedCertificateTimestamp"
                         ],
                         "meta:enum": {
-                          "": "",
+                          "basicConstraints": "Specifies whether a certificate can be used as a CA certificate or not.",
+                          "keyUsage": "Specifies the allowed uses of the public key in the certificate.",
+                          "extendedKeyUsage": "Specifies additional purposes for which the public key can be used.",
+                          "subjectAlternativeName": "Allows inclusion of additional names to identify the entity associated with the certificate.",
+                          "authorityKeyIdentifier": "Identifies the public key of the CA that issued the certificate.",
+                          "subjectKeyIdentifier": "Identifies the public key associated with the entity the certificate was issued to.",
+                          "authorityInformationAccess": "Contains CA issuers and OCSP information.",
+                          "certificatePolicies": "Defines the policies under which the certificate was issued and can be used.",
+                          "crlDistributionPoints": "Contains one or more URLs where a Certificate Revocation List (CRL) can be obtained.",
+                          "signedCertificateTimestamp": "Shows that the certificate has been publicly logged, which helps prevent the issuance of rogue certificates by a CA. Log ID, timestamp and signature as proof.",
                         },
+                      },
+                      "value": {
+                        "type": "string",
+                        "title": "Value",
+                        "description": ""
                       }
                     }
                   },