I am trying to store root certificate information in a MySQL database using the api/v1/cfssl/certadd API. However, I encounter an error due to the missing authority_key_identifier (AKI) in the root certificate.
I want to insert a root certificate into a MySQL database using either the cfssl HTTP API or the cfssl binary tool.
Steps to Reproduce:
Use the following API request to insert the root certificate:
{"success":false,"result":null,"errors":[{"code":400,"message":"Authority key identifier of request and certificate do not match"}],"messages":[]}
Reason:
This error occurs because the root certificate does not have an AKI value. I attempted to use the SKI value instead of the AKI, but the same error occurs due to the following code in insert.go:
if !bytes.Equal(aki, cert.AuthorityKeyId) {
return errors.NewBadRequestString("Authority key identifier of request and certificate do not match")
}
Description:
I am trying to store root certificate information in a MySQL database using the api/v1/cfssl/certadd API. However, I encounter an error due to the missing authority_key_identifier (AKI) in the root certificate.
I want to insert a root certificate into a MySQL database using either the cfssl HTTP API or the cfssl binary tool.
Steps to Reproduce:
Use the following API request to insert the root certificate:
The following error occurs:
Reason:
This error occurs because the root certificate does not have an AKI value. I attempted to use the SKI value instead of the AKI, but the same error occurs due to the following code in insert.go: