[gnutls-devel] GnuTLS | Gnutls reports an error for the authority_key_id in a CRL file. (#1716)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Thu Jun 12 14:18:52 CEST 2025
One happy person created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1716
## Description of problem:
Hello,
I am encountering the following error while parsing a CRL file with GnuTLS:
error: gnutls_x509_ext_import_authority_key_id: ASN1 parser: Error in DER parsing.
However, when I use OpenSSL to parse this same CRL file, the authority_key_id value is successfully parsed as:
keyid:EF:69:E0:F7:D5:1D:E6:99:EC:DC:6D:D0:F7:E2:B9:5C:64:71:83:35.
After inspecting the authority_key_id value in the CRL file, I cannot find the source of the problem. Could you please clarify if this is an error in the CRL file itself, or an issue with GnuTLS?
## Version of gnutls used:
GnuTLS 3.8.9
## Distributor of gnutls (e.g., Ubuntu, Fedora, RHEL)
Ubuntu
## How reproducible:
certtool --crl-info --inder --infile crl_aki_issuer_158_gnutls.der
## Actual results:
error: gnutls_x509_ext_import_authority_key_id: ASN1 parser: Value is not valid.
## Expected results:
[crl_aki_issuer_158_gnutls.der](/uploads/c2131811558bafec8d141a3ab2600ee1/crl_aki_issuer_158_gnutls.der)
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1716
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20250612/b928ed2d/attachment.html>
More information about the Gnutls-devel
mailing list