Validate CRLs for the document signer certificate and IACA root

Much of the work to support full mdoc authentication is covered by https://github.com/spruceid/isomdl/issues/42 and [this branch](https://github.com/spruceid/isomdl/tree/feat/mdoc-auth).

However CRL endpoint checking is still required. To facilitate this we will need a function that takes an IACA certificate and a document signer certificate. The function should validate the CRLs according to the profile defined in Annex B of 18013-5. The function should respond with an "Outcome" struct that informs the caller which if any of the certificates are revoked.

For example, something along the lines of:
```rust
pub struct Outcome {
    iaca_revoked: Option<bool>,
    ds_revoked: Option<bool>,
    errors: Vec<Error>,
}

pub async fn validate_crl(iaca: x509_cert::TbsCertificate, ds: x509::TbsCertificate) -> Outcome {
    ...
}
```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Validate CRLs for the document signer certificate and IACA root #76

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Validate CRLs for the document signer certificate and IACA root #76

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions