pyOpenSSL

Many types of X509Extension can not be created

Bug #268098 reported by Alex Stapleton
2
Affects Status Importance Assigned to Milestone
pyOpenSSL
Fix Released
High
Jean-Paul Calderone
pyOpenSSL 0.9

Bug Description

This issue was reported on the SF mailing list here:
http://sourceforge.net/mailarchive/message.php?msg_name=279239c70804080550j3e89c047jbb5692bf88b57129%40mail.gmail.com

You can't create most flavours of X509Extension.

e.g.

# this works fine
X509Extension('basicConstraints',1, 'CA:true')

# this throws a ValueError
X509Extension('nsComment', 0, 'OpenSSL Generated Certificate'))

Related branches

lp:~exarkun/pyopenssl/x509extension (Merged)
Revision history for this message
Alex Stapleton (alex-stapleton) wrote :
Revision history for this message
Alex Stapleton (alex-stapleton) wrote :

I've attached the patch I linked to on the SF mailing list. Please test it :)

Revision history for this message
Jean-Paul Calderone (exarkun) wrote :

Note to myself, there's another patch at http://prol.etari.at/pyopenssl/ which adds some test coverage

Jean-Paul Calderone (exarkun)
Changed in pyopenssl:
assignee: nobody → exarkun
importance: Undecided → High
milestone: none → 0.9
status: New → Confirmed
Revision history for this message
Jean-Paul Calderone (exarkun) wrote :

I've merged x509extension into trunk. It is still not possible to create *all* types of extensions. For example, proxyCertInfo requires a configuration database, but there is no way to represent this or supply it to X509Extension. However, extensions like nsComment are now supported.

Changed in pyopenssl:
status: Confirmed → Fix Committed
Jean-Paul Calderone (exarkun)
Changed in pyopenssl:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.