Bug#422882: [Pkg-openssl-devel] Bug#422882: openssl: mistake in note
on x509v3_config manual page
Javier Barroso
javibarroso at gmail.com
Tue May 8 22:27:24 UTC 2007
Kurt wrote:
> I see no patch?
I have the doubt, If somebody propose a small change I don't know if
it could be consider like a patch. Now than I know about it is not a
patch, I won't tag patch anymore if a patch file is not attached.
> And I have no idea what you think is wrong ...
I can't generate the certificate (with a crlDistributionPoints ldap
uri within it) with manual page instruction.
When subjectAltName is crlDistributionPoints, the manual recommend fails:
subjectAltName=@subject_alt_section
[subject_alt_section]
subjectAltName=URI:ldap://somehost.com/CN=foo,OU=bar
I think the correct setup is (at least for crlDistributionPoints):
subjectAltName=@subject_alt_section
[subject_alt_section]
URI=ldap://somehost.com/CN=foo,OU=bar
I can generate my certificate with the second config, but not with the first
Please correct me if I'm wrong
As reference, I read
http://www.mail-archive.com/openssl-dev@openssl.org/msg21907.html for
my solution
Thank you
PD: Sorry for my english
More information about the Pkg-openssl-devel
mailing list