[gnutls-devel] certtool bug: key_purpose_oids ignored when generating CSR

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu May 2 19:59:31 CEST 2013


On Mon, Apr 29, 2013 at 5:59 PM, Harry Mason <harry.mason at smoothwall.net> wrote:
> I'm using certtool to generate a certificate for EAP authentication. I
> was trying to use the key_purpose_oids option to add the necessary OID
> to the CSR, but the code in generate_request never checks the value of
> this option.
> If generating a certificate directly without an intermediate CSR it
> works, because generate_certificate calls get_key_purpose_set; but there
> is no corresponding function to add the OIDs to a gnutls_x509_crq_t.

Hello,
 Could you try with the following patch applied?

http://gitorious.org/gnutls/gnutls/commit/440462b981782c710827ebd3b4122647b87298e2/diffs/e644b7f471582a453c2c7fc39c575b14549531cf

regards,
Nikos



More information about the Gnutls-devel mailing list