diff options
| author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2019-04-15 14:32:55 +0200 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2019-04-20 17:12:44 +0200 |
| commit | d3ee878e02d9804787179993de513d27b3e53f80 (patch) | |
| tree | f7a984199cc1382d8261501f479de0b3eb318361 /src/certtool-args.def | |
| parent | c951c13f3814e02fc2df7ce8b2408337d3770660 (diff) | |
| download | gnutls-d3ee878e02d9804787179993de513d27b3e53f80.tar.gz | |
certtool: generate RSA-PSS certificates from RSA keys
When generating certificates it was not possible to generate
an RSA-PSS certificate from an RSA key (common scenario). This
fixes the certificate generation to include such a method.
Ironically there was a test for this scenario but the test
was limited to checking that the combination of certtool parameters
succeeded; modified the test to check the textual expression of
the certificate for the RSA-PSS indicators.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Diffstat (limited to 'src/certtool-args.def')
| -rw-r--r-- | src/certtool-args.def | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/src/certtool-args.def b/src/certtool-args.def index 27ca2c8ed4..35741a21c8 100644 --- a/src/certtool-args.def +++ b/src/certtool-args.def @@ -200,7 +200,9 @@ flag = { arg-type = string; descrip = "Specify the key type to use on key generation"; doc = "This option can be combined with --generate-privkey, to specify -the key type to be generated. Valid options are, 'rsa', 'rsa-pss', 'dsa', 'ecdsa', and 'ed25519'."; +the key type to be generated. Valid options are, 'rsa', 'rsa-pss', 'dsa', 'ecdsa', and 'ed25519'. +When combined with certificate generation it can be used to specify an +RSA-PSS certificate when an RSA key is given."; }; flag = { |