[gnutls-help] certtool and add_extension
Nicolas Mora
nicolas at babelouest.org
Thu Dec 5 17:21:00 CET 2019
Hello,
In some tests procedures, I need to add the following extension to signing certificates:
key: 1.3.6.1.4.1.45724.1.1.4
value: a 16 bytes value
According to certtool documentation [1], I must use add_extension with an octet string:
add_extension = "1.2.3.4 octet_string(0x0AAB01ACFE)"
In my case, the add_extension parameter would be:
add_extension = "1.3.6.1.4.1.45724.1.1.4 octet_string(0x0410CD8C395C26EDEEDE653B00797D03CA3C)"
Although, the generated certificate doesn't include the extension "1.3.6.1.4.1.45724.1.1.4"
You can see the template file I use here: https://github.com/babelouest/glewlwyd/blob/master/test/cert/template-client-packed.cfg
Is there a something I missed when using the certtool command?
Thanks in advance
/Nicolas
[1] - https://www.gnutls.org/manual/html_node/certtool-Invocation.html
More information about the Gnutls-help
mailing list