[gnutls-dev] libgnutls failes to parse OpenSSL generated certificates

Max Kellermann max at duempel.org
Wed Dec 20 15:19:10 CET 2006


tag 403887 patch
thanks

On 2006/12/20 13:53, Max Kellermann <max at duempel.org> wrote:
>  -- LDAP stuff
>  -- may not be correct
>  [...]
>  ldap-UID ::= IA5String
> 
> Which is indeed not correct.  ldap-UID should be a DirectoryString.

Here is a patch for this bug.  I had to add IA5String to the
DirectoryString CHOICE.  This is obviously incorrect, but seems to be
the only way to ensure that certificates generated by certtool can
also be parsed.  Please correct me if there is a better solution.

Max

-------------- next part --------------
A non-text attachment was scrubbed...
Name: gnutls_uid_is_a_directory_string.patch
Type: text/x-diff
Size: 1481 bytes
Desc: not available
Url : /pipermail/attachments/20061220/2eb36ea1/attachment.bin 


More information about the Gnutls-dev mailing list