[gnutls-devel] GnuTLS | Verify command error output (#1617)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Fri Nov 22 14:25:32 CET 2024
dulanshuangqiao created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1617
## Description of the feature:
Shows the reason why the verification failed
For certificate validation failures caused by incorrect extensions, GnuTLS reports the reason as an invalid signature, while OpenSSL attributes the failure to issues with the extensions.
## Applications that this feature may be relevant to:
certtool --verify --load-ca-certificate CA.pem --infile fd.pem
## Is this feature implemented in other libraries (and which)
openssl error:0580009E:x509 certificate routines:ossl_x509v3_cache_extensions:reason(158):../crypto/x509/v3_purp.c:635:
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1617
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20241122/77dcf955/attachment.html>
More information about the Gnutls-devel
mailing list