PEM generated by gnutls_rsa_params_export_pkcs1 and gnutls_dh_params_import_pkcs3

Sam Varshavchik mrsam at
Mon Jun 23 03:28:08 CEST 2008

Nikos Mavrogiannopoulos writes:

> Sam Varshavchik wrote:
>> The buffer size return value from gnutls_dh_params_import_pkcs3(), when
>> specifying GNUTLS_X509_FMT_PEM, seems to include a trailing \0 byte,
>> after "-----END DH PARAMETERS-----<NL>". On the other hand,
>> gnutls_rsa_params_export_pkcs1() with GNUTLS_X509_FMT_PEM sets the
>> returned buffer size to not include any trailing \0, after "-----END RSA
>> PRIVATE KEY-----<NL>".
>> That's the behavior I've observed with 2.0.4; and I haven't yet built
>> 2.4.0. If that's the case, I'm not really sure if it's a major issue,
>> but perhaps this should be noted in the man pages.
> Hello,
>  This is a bug for sure, thank you for reporting it. Does the attached
> patch solve your issue?

Yes, with this patch gnutls_dh_params_import_pkcs3() no longer produces the 
trailing null byte.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: </pipermail/attachments/20080622/5e312c6e/attachment.pgp>

More information about the Gnutls-devel mailing list