[gnutls-devel] GnuTLS | Certtool error when generating a selfsigned x25519 certificate (#1524)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Fri Mar 1 10:37:23 CET 2024

Sahil Siddiq commented on a discussion: https://gitlab.com/gnutls/gnutls/-/issues/1524#note_1796682164

> the potentially interesting stuff is at the last lines

Right, as mentioned in the previous message, that's where the preferred digest algorithm is determined based on the key type. A switch-case statement is used for this purpose.

	switch (key->params.algo) {
	case GNUTLS_PK_DSA: [...]
	case GNUTLS_PK_ECDSA: [...]
	case GNUTLS_PK_EDDSA_ED25519: [...]
	case GNUTLS_PK_EDDSA_ED448: [...]
	case GNUTLS_PK_GOST_01:
	case GNUTLS_PK_GOST_12_256:
	case GNUTLS_PK_GOST_12_512: [...]
	case GNUTLS_PK_RSA_PSS: [...]
	case GNUTLS_PK_RSA: [...]
There is no case statement for `ECDH_X25519` and `ECDH_X448`. I am not sure if this is a config issue.

@SilentSobs Could you please let me know what log lines are printed out when you run the two `certtool` commands?

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1524#note_1796682164
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20240301/f385468b/attachment.html>

More information about the Gnutls-devel mailing list