Details
-
Type:
Bug
-
Status: Closed
-
Priority:
P4
-
Resolution: Fixed
-
Affects Version/s: 13
-
Fix Version/s: 14
-
Component/s: security-libs
-
Labels:
-
Subcomponent:
-
Resolved In Build:b22
-
Verification:Verified
Description
The following command returns an error:
$ keytool -alias foo -dname "CN=Foo" -genkeypair -keystore ./keystore -ext ku:c=dig,kE -storepass changeit
keytool error: java.lang.Exception: command kE is ambiguous:
keyEncipherment keyAgreement keyCertSign
But kE is not ambiguous. The keytool man page also gives 'kE" as an example in the "Generating Certificates for an SSL Server" section:
keytool -storepass password -keystore server.jks -certreq -alias server |
keytool -storepass password -keystore ca.jks -gencert -alias ca
-ext ku:c=dig,kE -rfc > server.pem
$ keytool -alias foo -dname "CN=Foo" -genkeypair -keystore ./keystore -ext ku:c=dig,kE -storepass changeit
keytool error: java.lang.Exception: command kE is ambiguous:
keyEncipherment keyAgreement keyCertSign
But kE is not ambiguous. The keytool man page also gives 'kE" as an example in the "Generating Certificates for an SSL Server" section:
keytool -storepass password -keystore server.jks -certreq -alias server |
keytool -storepass password -keystore ca.jks -gencert -alias ca
-ext ku:c=dig,kE -rfc > server.pem
Attachments
Issue Links
- relates to
-
-
- Resolved
-