ssl: add OID map properties for proxy-wasm #40178
Conversation
This change adds new methods to the SSL ConnectionInfo interface to expose certificate extension OID maps, which allow proxy-wasm filters to access certificate extension data. This implements the proposal from proxy-wasm/spec#89. The new properties are: - connection.oid_map_local_certificate (map) - connection.oid_map_peer_certificate (map) - upstream.oid_map_local_certificate (map) - upstream.oid_map_peer_certificate (map) Each property provides a map of OID strings to their values extracted from certificate extensions. Signed-off-by: Derek Brown <[email protected]>
|
Hi @DerekTBrown, welcome and thank you for your contribution. We will try to review your Pull Request as quickly as possible. In the meantime, please take a look at the contribution guidelines if you have not done so already. |
| OidsPeerCertificate, | ||
| OidsLocalCertificate, |
There was a problem hiding this comment.
Note to self: we could probably drop this in favor of the OidMapPeerCertificate/OidMapLocalCertificate implementation, and just iterate over keys when needed.
|
This pull request has been automatically marked as stale because it has not had activity in the last 30 days. It will be closed in 7 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions! |
github-actions
bot
added
the
stale
|
This pull request has been automatically closed because it has not had activity in the last 37 days. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions! |
This implements the proposal from proxy-wasm/spec#89.
This change adds new methods to the SSL ConnectionInfo interface to expose certificate extension OID maps, which allow proxy-wasm filters to access certificate extension data.
The new properties are:
connection.oid_map_local_certificate(map)connection.oid_map_peer_certificate(map)upstream.oid_map_local_certificate(map)upstream.oid_map_peer_certificate(map)Each property provides a map of OID strings to their values extracted from certificate extensions.