[gnutls-devel] CRLs
Kurt Roeckx
kurt at roeckx.be
Mon Jun 2 08:45:41 CEST 2014
On Mon, Jun 02, 2014 at 08:31:58AM +0200, Nikos Mavrogiannopoulos wrote:
> On Sun, Jun 1, 2014 at 10:54 PM, Kurt Roeckx <kurt at roeckx.be> wrote:
>
> > On Sun, Jun 01, 2014 at 10:50:08PM +0200, Kurt Roeckx wrote:
> > > Hi,
> > >
> > > I'm currently importing CRLs, and currently have 2 issues:
> > > - Dealing with CRLs is really slow. Currently waiting 20
> > > minutes for the output of:
> > > certtool --infile file.crl --inder -l
> > > Which is a 5 MB file. It only seems to be allocating memory
> > > during that time.
> > I think one of the problem might be that calling
> > gnutls_x509_crl_get_crt_serial() starts from 0 each time and
> > needs to walk all elements in between to find the serial it needs.
> >
>
> Do you mean the asn1_read_value() walk? How many elements are in the CRL in
> question?
I have some with over 100K entries.
Kurt
More information about the Gnutls-devel
mailing list