Should key usages be tracked as a HashSet instead?
#265
Labels
next-major-release
breaking changes put off until next major release
Comments
djc
added
the
next-major-release
personally I'd like to keep rcgen as deterministic as possible, so IMO it would be good to have a consistent order. edit: with that I mean to not introduce nondeterminism where there hasn't been such before. |
|
We could order the key usages when we're writing out DER -- that would still generate a potentially different order than was retrieved from a parsed certificate but would at least be consistent/deterministic? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In #264 code is pretty ugly because we're keeping track of whether an EKU already exists in the
Vecthat we hold. ShouldCertificateParams::key_usagesandextended_key_usagesbeHashSetinstead?(I guess it could even be more like a bitset similar to what x509-parser apparently does.)
The text was updated successfully, but these errors were encountered: