-
Notifications
You must be signed in to change notification settings - Fork 109
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Problem creating self signed cert with ECDSA algorithm and using as client identity in native-tls #82
Comments
How have you isolated the issue to the private key? rcgen uses ring to generate and serialize private keys. How ring serializes them is described here. |
There might be an incompatibility between how ring serializes a key and how Mac OS expects it. Can you paste two keys here in base64 / PEM format, one that works, and one that doesn't? |
Thanks for getting back to me @est31! This key/cert combo does not work (generated with the code above):
While this one works (generated via code in golang):
Had to replace the header string |
Hi everyone,
I am having trouble creating a self signed certificate with ECDSA that will be usable (on macOS) with native-tls as a client identity.
This is the code I have so far:
The error I am getting from macOS security framework is:
I got as far as identifying the issue being with the private key.
Is there anything I am doing completely wrong?
Thanks
Andreas
The text was updated successfully, but these errors were encountered: