add Microsoft and Kerberos OIDs (#2035)

Author: janstarke

const-oid/oiddbgen/krb5-oids.asn

@@ -0,0 +1,72 @@
+https://web.mit.edu/kerberos/krb5-oids/krb5-oids.asn
+
+Krb5-OIDS {
+	iso(1) identified-organization(3) dod(6) internet(1)
+	security(5) kerberosV5(2) modules(4) krb5-oids(3)
+} DEFINITIONS ::= BEGIN
+
+EXPORTS -- none -- ;
+
+--
+-- NOTE: Identifier names in this module are subject to change at any time.
+-- Applications should not rely on these identifier names for any reason,
+-- and the EXPORTS clause above reflects this.  The identifier names are
+-- primarily intended for human readers.
+--
+-- Contact <krb5-oid-registrar@mit.edu> to request assignments under
+-- the krb5 OID arc.
+--
+
+-- krb5 OID arc, per RFC 1510 (with "dod" node corrected)
+id-krb5 OBJECT IDENTIFIER ::= {	iso(1) identified-organization(3) dod(6) internet(1) security(5) kerberosV5(2)}
+
+-- assigned by pkinit (work in progress)
+id-principalName	OBJECT IDENTIFIER ::= { id-krb5 2 }
+
+--
+-- arc for PKINIT (RFC 4556)
+--
+id-pkinit	OBJECT IDENTIFIER ::= { id-krb5 3 }
+
+id-pkauthdata	OBJECT IDENTIFIER ::= { id-pkinit 1 }
+id-pkdhkeydata	OBJECT IDENTIFIER ::= { id-pkinit 2 }
+id-pkrkeydata	OBJECT IDENTIFIER ::= { id-pkinit 3 }
+id-pkekuoid	OBJECT IDENTIFIER ::= { id-pkinit 4 }
+id-pkkdcekuoid	OBJECT IDENTIFIER ::= { id-pkinit 5 }
+
+-- draft-ietf-kitten-pkinit-alg-agility
+id-pkinit-kdf	OBJECT IDENTIFIER         ::= { id-pkinit 6 }
+id-pkinit-kdf-ah-sha1 OBJECT IDENTIFIER   ::= { id-pkinit-kdf sha1(1) }
+id-pkinit-kdf-ah-sha256 OBJECT IDENTIFIER ::= { id-pkinit-kdf sha256(2) }
+id-pkinit-kdf-ah-sha512 OBJECT IDENTIFIER ::= { id-pkinit-kdf sha512(3) }
+id-pkinit-kdf-ah-sha384 OBJECT IDENTIFIER ::= { id-pkinit-kdf sha384(4) }
+
+-- IAKERB (work in progress)
+id-iakerb	OBJECT IDENTIFIER ::= { id-krb5 5 }
+
+--
+-- krb5 ASN.1 modules
+--
+id-krb5-modules		OBJECT IDENTIFIER ::= { id-krb5 4 }
+
+-- RFC 4120 module
+id-krb5-krb5spec2	OBJECT IDENTIFIER ::= { id-krb5-modules 2 }
+
+-- OID for this module
+id-krb5-OIDS		OBJECT IDENTIFIER ::= { id-krb5-modules 3 }
+
+-- krb-extensions (work in progress)
+
+id-krb5-krb5spec3	OBJECT IDENTIFIER ::= { id-krb5-modules 4 }
+
+id-pkinit-module	OBJECT IDENTIFIER ::= { id-krb5-modules 5 }
+
+id-pkinit-agility-module OBJECT IDENTIFIER ::= { id-pkinit-module 1 }
+
+id-cammac-module	OBJECT IDENTIFIER ::= { id-krb5-modules 7 }
+
+id-spake-module		OBJECT IDENTIFIER ::= { id-krb5-modules 8 }
+
+id-authentication-indicators OBJECT IDENTIFIER ::= { id-krb5-modules 9 }
+
+END

const-oid/oiddbgen/microsoft.asn

@@ -0,0 +1,63 @@
+
+{iso(1) identified-organization(3) dod(6) internet(1) private(4) enterprise(1) microsoft(311)}
+iso                     OBJECT IDENTIFIER ::= { 1 }
+identified-organization OBJECT IDENTIFIER ::= { iso 3 }
+dod                     OBJECT IDENTIFIER ::= { identified-organization 6 }
+internet                OBJECT IDENTIFIER ::= { dod 1 }
+private                 OBJECT IDENTIFIER ::= { internet 4 }
+enterprises             OBJECT IDENTIFIER ::= { private 1 }
+microsoft               OBJECT IDENTIFIER ::= { enterprises 311 }
+
+
+Software                             OBJECT IDENTIFIER ::= { microsoft 1  }
+Authenticode                         OBJECT IDENTIFIER ::= { microsoft 2  }
+Time Stamping                        OBJECT IDENTIFIER ::= { microsoft 3  }
+Permissions                          OBJECT IDENTIFIER ::= { microsoft 4  }
+Crypto 2.0                           OBJECT IDENTIFIER ::= { microsoft 10 }
+Catalog                              OBJECT IDENTIFIER ::= { microsoft 12 }
+Microsoft-PKCS10-OIDs                OBJECT IDENTIFIER ::= { microsoft 13 }
+Microsoft-Java                       OBJECT IDENTIFIER ::= { microsoft 15 }
+Microsoft-Outlook-Exchange           OBJECT IDENTIFIER ::= { microsoft 16 }
+Microsoft-PKCS12-attributes          OBJECT IDENTIFIER ::= { microsoft 17 }
+Microsoft-Hydra                      OBJECT IDENTIFIER ::= { microsoft 18 }
+Microsoft-ISPU-Test                  OBJECT IDENTIFIER ::= { microsoft 19 }
+Microsoft-enrollment-infrastructure  OBJECT IDENTIFIER ::= { microsoft 20 }
+Microsoft-CertSrv-Infrastructure     OBJECT IDENTIFIER ::= { microsoft 21 }
+Microsoft-Directory-Service          OBJECT IDENTIFIER ::= { microsoft 25 }
+IIS                                  OBJECT IDENTIFIER ::= { microsoft 30 }
+Windows-updates-and-service-packs    OBJECT IDENTIFIER ::= { microsoft 31 }
+Fonts                                OBJECT IDENTIFIER ::= { microsoft 40 }
+Microsoft-Licensing-and-Registration OBJECT IDENTIFIER ::= { microsoft 41 }
+Microsoft-Corporate-PKI-ITG          OBJECT IDENTIFIER ::= { microsoft 42 }
+Microsoft-WWOps-BizExt               OBJECT IDENTIFIER ::= { microsoft 43 }
+Microsoft-Peer-Networking            OBJECT IDENTIFIER ::= { microsoft 44 }
+Mobile Devices-Code-Signing          OBJECT IDENTIFIER ::= { microsoft 45 }
+Extended-validation                  OBJECT IDENTIFIER ::= { microsoft 60 }
+BitLocker-Drive-Encryption           OBJECT IDENTIFIER ::= { microsoft 67 }
+CAPICOM                              OBJECT IDENTIFIER ::= { microsoft 88 }
+
+szOID_AUTO_ENROLL_CTL_USAGE          OBJECT IDENTIFIER ::= { Microsoft-enrollment-infrastructure 1 }
+szOID_ENROLL_CERTTYPE_EXTENSION      OBJECT IDENTIFIER ::= { Microsoft-enrollment-infrastructure 2 }
+szOID_CERT_MANIFOLD                  OBJECT IDENTIFIER ::= { Microsoft-enrollment-infrastructure 3 }
+
+MS-Certificate-Services-CA-Version   OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 1 }
+szOID_CERTSRV_PREVIOUS_CERT_HASH     OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 2 }
+szOID_CRL_VIRTUAL_BASE               OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 3 }
+szOID_CRL_NEXT_PUBLISH               OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 4 }
+szOID_KP_CA_EXCHANGE                 OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 5 }
+szOID_KP_KEY_RECOVERY_AGENT          OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 6 }
+szOID_CERTIFICATE_TEMPLATE           OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 7 }
+szOID_ENTERPRISE_OID_ROOT            OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 8 }
+szOID_RDN_DUMMY_SIGNER               OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 9 }
+szOID_APPLICATION_CERT_POLICIES      OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 10 }
+szOID_APPLICATION_POLICY_MAPPINGS    OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 11 }
+szOID_APPLICATION_POLICY_CONSTRAINTS OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 12 }
+szOID_ARCHIVED_KEY_ATTR              OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 13 }
+szOID_CRL_SELF_CDP                   OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 14 }
+szOID_REQUIRE_CERT_CHAIN_POLICY      OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 15 }
+szOID_ARCHIVED_KEY_CERT_HASH         OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 16 }
+szOID_ISSUED_CERT_HASH               OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 17 }
+szOID_DS_EMAIL_REPLICATION           OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 19 }
+szOID_REQUEST_CLIENT_INFO            OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 20 }
+szOID_ENCRYPTED_KEY_HASH             OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 21 }
+szOID_CERTSRV_CROSSCA_VERSION        OBJECT IDENTIFIER ::= {Microsoft-CertSrv-Infrastructure 22 }

const-oid/oiddbgen/src/main.rs

@@ -43,6 +43,11 @@ const MDS: &[(&str, &str)] = &[
     ("brng", include_str!("../stb/brng.asn")),
     ("bash", include_str!("../stb/bash.asn")),
     ("bake", include_str!("../stb/bake.asn")),
+    // created from: https://oidref.com/1.3.6.1.4.1.311
+    ("microsoft", include_str!("../microsoft.asn")),
+
+    // loaded from https://web.mit.edu/kerberos/krb5-oids/krb5-oids.asn
+    ("kerberosv5", include_str!("../krb5-oids.asn")),
 ];
 
 // Bases defined in other places.