[gnutls-devel] GnuTLS | GnuTLS cannot parse the extension Subject Information Access (#1158)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Mon Jan 25 15:13:49 CET 2021



GOODPWDCETCSZ created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1158



## Description of problem:
GnuTLS cannot parse the extension Subject Information Access

## Version of gnutls used:
3.5.5, 3.6.13

## Distributor of gnutls (e.g., Ubuntu, Fedora, RHEL)
Ubuntu x64

## How reproducible:

Steps to Reproduce:

 * `certtool -i --infile seed-7s35-9s14-37s37-55s29-750s39.pem`
 * `openssl asn1parse -genstr OID:1.3.6.1.5.5.7.1.11
    0:d=0  hl=2 l=   8 prim: OBJECT            :Subject Information Access`

## Actual results:
> Unknown extension 1.3.6.1.5.5.7.1.11 (critical):
			ASCII: 0y0...+.....0...ldap://http:/un.org0/..+.....0..#https://www.ca-issuer.com/ca-issuer0%..+.....0...https://ocsp.com/ocsp.ext
			Hexdump: 3079301f06082b0601050507300186136c6461703a2f2f687474703a2f756e2e6f7267302f06082b06010505073002862368747470733a2f2f7777772e63612d6973737565722e636f6d2f63612d697373756572302506082b06010505073001861968747470733a2f2f6f6373702e636f6d2f6f6373702e657874


## Expected results:

sth. like this:

> Subject Information Access: critical
                OCSP - URI:ldap://http:/un.org
                CA Issuers - URI:https://www.ca-issuer.com/ca-issuer
                OCSP - URI:https://ocsp.com/ocsp.ext

[seed-7s35-9s14-37s37-55s29-750s39.zip](/uploads/6d6d8665c2b9144b88691e02e1c2a45d/seed-7s35-9s14-37s37-55s29-750s39.zip)

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1158
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20210125/e9370cc7/attachment.html>


More information about the Gnutls-devel mailing list