Closed ReeceHumphreys closed 3 months ago
Looked more into it. Looks like an issue with the .NET QUIC server I am running not sending the intermediary certificate!
I use Let's Encrypt certs for all my testing with no problems, so if you can get your peer to give the whole chain, it should work.
Using the latest version of
aioquic
. Hello, I have aQUIC
server built withmsquic
configured with a Let's Encrypt certificate. I'm unable to establish a TLS connection to this sever with aioquic despite being able to create a successful connection in C# and Go. Here is a minimal example of my code.I am getting the following error (
reason unable to get local issuer certificate
):I am hoping someone can give me some guidance as to what may be going wrong! Im happy to provide any additional information too. It seems that the default
certifi.where()
path does indeed contain the isrg root x1 cert needed for Let's Encrypt and the server is indeed sending the correct certs when inspecting withopenssl s_client -connect hello.icerpc.dev:4062