From 241465c368c0117a8d86c17c44b39fed3116c6e0 Mon Sep 17 00:00:00 2001
From: Tim Becker <tim.becker@kuriositaet.de>
Date: Fri, 19 Apr 2013 15:37:14 +0200
Subject: extensions aren't supported in v1, set to v3 (value=2) if using them.

---
 netlib/certutils.py | 1 +
 1 file changed, 1 insertion(+)

(limited to 'netlib/certutils.py')

diff --git a/netlib/certutils.py b/netlib/certutils.py
index 859c93f1..8407dcc8 100644
--- a/netlib/certutils.py
+++ b/netlib/certutils.py
@@ -110,6 +110,7 @@ def dummy_cert(fp, ca, commonname, sans):
     cert.set_subject(req.get_subject())
     cert.set_serial_number(int(time.time()*10000))
     if ss:
+        cert.set_version(2)
         cert.add_extensions([OpenSSL.crypto.X509Extension("subjectAltName", True, ss)])
     cert.set_pubkey(req.get_pubkey())
     cert.sign(key, "sha1")
-- 
cgit v1.2.3