[gnutls-devel] GnuTLS | Certtool error when generating a selfsigned x25519 certificate (#1524)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Fri Mar 1 10:37:23 CET 2024
Sahil Siddiq commented on a discussion: https://gitlab.com/gnutls/gnutls/-/issues/1524#note_1796682164
> the potentially interesting stuff is at the last lines
Right, as mentioned in the previous message, that's where the preferred digest algorithm is determined based on the key type. A switch-case statement is used for this purpose.
```c
switch (key->params.algo) {
case GNUTLS_PK_DSA: [...]
case GNUTLS_PK_ECDSA: [...]
case GNUTLS_PK_EDDSA_ED25519: [...]
case GNUTLS_PK_EDDSA_ED448: [...]
case GNUTLS_PK_GOST_01:
case GNUTLS_PK_GOST_12_256:
case GNUTLS_PK_GOST_12_512: [...]
case GNUTLS_PK_RSA_PSS: [...]
case GNUTLS_PK_RSA: [...]
default:
gnutls_assert();
ret = GNUTLS_E_INTERNAL_ERROR;
}
```
There is no case statement for `ECDH_X25519` and `ECDH_X448`. I am not sure if this is a config issue.
@SilentSobs Could you please let me know what log lines are printed out when you run the two `certtool` commands?
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1524#note_1796682164
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20240301/f385468b/attachment.html>
More information about the Gnutls-devel
mailing list