[gnutls-devel] GnuTLS | Extend test cert to 2049-05-27 (!979)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Mon Apr 15 10:03:56 CEST 2019

> Which tests fail?

doit:124: rsa pss key: gnutls_x509_crt_verify_data2                    |
 FAIL x509sign-verify

> What about making the cert never expire?
I tried to set expiration to 1000y in the future and it refused to generate a cert:

cat cert.cfg
expiration_date = "9999-12-31 23:59:59"

certtool --template cert.cfg --load-ca-privkey ca3_key.pem --load-ca-certificate ca3_cert.pem --load-certificate server_ca3_rsa_pss.pem ... -u

Generating a signed certificate...
Activation/Expiration time.
set_expiration: ASN1 parser: Element was not found.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/979#note_160714942
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190415/2cfb5b96/attachment.html>

More information about the Gnutls-devel mailing list