[gnutls-help] certtool: Serial number only 31 bit?

Josef Wolf jw at raven.inka.de
Thu May 15 12:08:06 CEST 2014


I am currently trying to use UUIDs (as Bignum) for the serial number of
certificates. AFAIK, the RFC 5280 allows up to 20 octets. But I have a hard
time to specify more than 31 bits in the template file.

With a prefix of 0x (indicating hex number), I get serial number 0. Ough!

Given as a decimal number, the number is truncated to 0x7fffffff.

Is this a limitation in certtool or am I missing something?

Josef Wolf
jw at raven.inka.de

More information about the Gnutls-help mailing list