From: Nikos Mavrogiannopoulos Date: Tue, 6 Mar 2012 17:13:19 +0000 (+0100) Subject: Added a real key purpose OID as example X-Git-Tag: gnutls_3_0_16~36 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=df2b6546b2a5ab7280470a0a8148e014cc6abfc6;p=thirdparty%2Fgnutls.git Added a real key purpose OID as example --- diff --git a/lib/includes/gnutls/x509.h b/lib/includes/gnutls/x509.h index b54832a63e..a0b11f1418 100644 --- a/lib/includes/gnutls/x509.h +++ b/lib/includes/gnutls/x509.h @@ -72,6 +72,7 @@ extern "C" #define GNUTLS_KP_TLS_WWW_SERVER "1.3.6.1.5.5.7.3.1" #define GNUTLS_KP_TLS_WWW_CLIENT "1.3.6.1.5.5.7.3.2" #define GNUTLS_KP_CODE_SIGNING "1.3.6.1.5.5.7.3.3" +#define GNUTLS_KP_MS_SMART_CARD_LOGON "1.3.6.1.4.1.311.20.2.2" #define GNUTLS_KP_EMAIL_PROTECTION "1.3.6.1.5.5.7.3.4" #define GNUTLS_KP_TIME_STAMPING "1.3.6.1.5.5.7.3.8" #define GNUTLS_KP_OCSP_SIGNING "1.3.6.1.5.5.7.3.9" diff --git a/src/certtool-args.def b/src/certtool-args.def index a3d45764d1..6dcb11d37f 100644 --- a/src/certtool-args.def +++ b/src/certtool-args.def @@ -554,9 +554,6 @@ email = "none@@none.org" # Challenge password used in certificate requests challenge_passwd = 123456 -# key_purpose_oid = 1.2.3.4.5.6.7 -# key_purpose_oid = 1.2.3.4.5.6.7.9 - # An URL that has CRLs (certificate revocation lists) # available. Needed in CA certificates. #crl_dist_points = "http://www.getcrl.crl/getcrl/" @@ -564,6 +561,11 @@ challenge_passwd = 123456 # Whether this is a CA certificate or not #ca +# for microsoft smart card logon +# key_purpose_oid = 1.3.6.1.4.1.311.20.2.2 + +### Other predefined key purpose OIDs + # Whether this certificate will be used for a TLS client #tls_www_client @@ -597,6 +599,8 @@ signing_key # Whether this key will be used for IPsec IKE operations. #ipsec_ike_key +### end of key purpose OIDs + # When generating a certificate from a certificate # request, then honor the extensions stored in the request # and store them in the real certificate.