"known in advance" public key authentication?

Florian Weimer fw at deneb.enyo.de
Thu Nov 15 22:12:57 CET 2012

* Nikos Mavrogiannopoulos:

> On 11/07/2012 10:52 PM, Florian Weimer wrote:
>> Make sure your certificates are valid X.509v3.  GNUTLS is extremely
>> forgiving, and if you've got a widely deployed certificate which
>> cannot be used with Java (for instance), this can be annoying.

> What do you mean by valid X.509v3? I suppose even the authors of X.509
> wouldn't even know what that means :) Anything we could improve?

I managed to create a version 1 certificate with extensions. 8-/

More information about the Gnutls-help mailing list