text: some x509 identfiers require NULL even though its optional

https://www.ietf.org/rfc/rfc4055.txt "In this case, the rsaEncryption object identifier MUST be used in the algorithm field within the subject public key information, and the parameters field MUST contain NULL."
bcoin-org · Jan 28, 2022 · dd15c2c · dd15c2c
1 parent c20d814
commit dd15c2c
Showing 1 changed file with 16 additions and 3 deletions.
diff --git a/test/x509-test.js b/test/x509-test.js
@@ -87,7 +87,11 @@ describe('X509', function() {
       version: 2,
       serialNumber: 'deadbeef0101',
       signature: {
-        algorithm: 'RSASHA256'
+        algorithm: 'RSASHA256',
+        parameters: {
+          type: 'NULL',
+          node: null
+        }
       },
       issuer: [],
       validity: {
@@ -97,7 +101,11 @@ describe('X509', function() {
       subject: [],
       subjectPublicKeyInfo: {
         algorithm: {
-          algorithm: 'RSAPublicKey'
+          algorithm: 'RSAPublicKey',
+          parameters: {
+            type: 'NULL',
+            node: null
+          }
         },
         publicKey: {
           modulus: pubJSON.n,
@@ -163,7 +171,12 @@ describe('X509', function() {
     // Complete
     certFromJSON = new x509.Certificate();
     certFromJSON.tbsCertificate = tbs;
-    certFromJSON.signatureAlgorithm.fromJSON({algorithm: 'RSASHA256'});
+    certFromJSON.signatureAlgorithm.fromJSON({
+      algorithm: 'RSASHA256',
+      parameters: {
+        type: 'NULL',
+        node: null
+      }});
     certFromJSON.signature.fromJSON({bits: sig.length * 8, value: sig.toString('hex')});
   });