-
Notifications
You must be signed in to change notification settings - Fork 67
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Trouble Validating RSA2048 cert signed by ECDSA CA #69
Comments
Hi,
Can you check the curve used by the CA certificate ? |
I believe these two certs reproduce the issue |
Thank you for providing test data. I confirm the authority is using NIST P-521, as shown by the following command:
So, biggest part of the problem is that NIST P-521is currently not well supported in common Rust crates like I will look more at possible solutions, but it seems that currently the only option is to use the |
I totally missed that it was a 521 cert, I suppose I chose the wrong settings when creating it. I know that |
Well, that was not noise, because I know have a working implementation based on I'd prefer to use a Rust solution if possible, but it seems I'll reopen an issue to discuss the switch to |
Just tried to do this, OpenSSL verifies fine but the library balks. Using RSA for both the CA and Leaf cert works fine.
The text was updated successfully, but these errors were encountered: