[gnutls-devel] GnuTLS | certtool --generate-self-signed interactive mode spews infinite text when confronted with EOF (#729)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Wed Mar 13 17:45:12 CET 2019



New Issue was created.

Issue 729: https://gitlab.com/gnutls/gnutls/issues/729
Author:    Daniel Kahn Gillmor
Assignee:  

consider the following sequence of commands, using `certtool` from GnuTLS 3.6.6:

```
certtool --generate-privkey > x.pem
echo | certtool --load-privkey x.pem --generate-self-signed
```

this produces the following text on stderr:

```
Generating a self signed certificate...
Please enter the details of the certificate's distinguished name. Just press enter to ignore a field.
Common name: UID: Organizational unit name: Organization name: Locality name: State or province name: Country name (2 chars): Enter the subject's domain component (DC): This field should not be used in new certificates.
E-mail: Enter the certificate's serial number in decimal (123) or hex (0xabcd)
(default is 0x23e8987047eeafd765c8b71070fa06c99acb6a5f)
value: 

Activation/Expiration time.
The certificate will expire in (days): The certificate will expire in (days): The certificate will expire in (days): The certificate will expire in (days): The certificate will expire in (days): The certificate will expire in (days): The certificate will expire in (days): The certificate will expire in (days): 
```

the last line continues forever.

I recognize that feeding the interactive mode with an EOF is user input error, but `certtool` should still not produce infinite spew as a result.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/729
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190313/68dc9fd2/attachment.html>


More information about the Gnutls-devel mailing list