[gnutls-help] certtool and add_extension
Nikos Mavrogiannopoulos
nmav at gnutls.org
Fri Dec 6 10:54:22 CET 2019
Hi,
You may want to check your gnutls version. This template option was
added at 3.5.3.
regards,
Nikos
On Thu, Dec 5, 2019 at 5:59 PM Nicolas Mora <nicolas at babelouest.org> wrote:
>
> Hello,
>
> In some tests procedures, I need to add the following extension to signing certificates:
> key: 1.3.6.1.4.1.45724.1.1.4
> value: a 16 bytes value
>
> According to certtool documentation [1], I must use add_extension with an octet string:
> add_extension = "1.2.3.4 octet_string(0x0AAB01ACFE)"
>
> In my case, the add_extension parameter would be:
> add_extension = "1.3.6.1.4.1.45724.1.1.4 octet_string(0x0410CD8C395C26EDEEDE653B00797D03CA3C)"
>
> Although, the generated certificate doesn't include the extension "1.3.6.1.4.1.45724.1.1.4"
>
> You can see the template file I use here: https://github.com/babelouest/glewlwyd/blob/master/test/cert/template-client-packed.cfg
>
> Is there a something I missed when using the certtool command?
>
> Thanks in advance
>
> /Nicolas
>
> [1] - https://www.gnutls.org/manual/html_node/certtool-Invocation.html
>
> _______________________________________________
> Gnutls-help mailing list
> Gnutls-help at lists.gnutls.org
> http://lists.gnupg.org/mailman/listinfo/gnutls-help
More information about the Gnutls-help
mailing list