search

alvinbaena / passkit

Create Apple Wallet Passes in Go
MIT License
99 stars 34 forks source link

x509: malformed certificate #10

Closed theobouwman closed 1 year ago

theobouwman commented 1 year ago

With an exported WWDR certificate (https://www.apple.com/certificateauthority/AppleWWDRCAG4.cer):

        signInfo, err := passkit.LoadSigningInformationFromFiles(
        "apple.pass/Certificates.p12",
        "xxxxxxxx",
        "apple.pass/wwdr.pem",
    )
    if err != nil {
        panic(err)
    }
2023/11/01 23:56:09 http: panic serving 127.0.0.1:59909: x509: malformed certificate
goroutine 65 [running]:
net/http.(*conn).serve.func1()
        /usr/local/go/src/net/http/server.go:1868 +0xb9
panic({0x1664420?, 0xc000486310?})
        /usr/local/go/src/runtime/panic.go:920 +0x270
main.SignAndStore({0x1, {0x17655d1, 0x4}, {0x1774ca0, 0x19}, {0x0, 0x0}, {0x176f8f4, 0x12}, {0x176f906, ...}, ...}, ...)
        /Users/theobouwman/dev/projects/momo/momo-wallet-pass-api/pass.go:68 +0x129
main.(*App).Handler(0x18617e0?, {0x18603f0?, 0xc0003d22a0}, 0xc000163100)
        /Users/theobouwman/dev/projects/momo/momo-wallet-pass-api/handler.go:40 +0x1e5
net/http.HandlerFunc.ServeHTTP(0xc000163000?, {0x18603f0?, 0xc0003d22a0?}, 0x2f8ea50?)
        /usr/local/go/src/net/http/server.go:2136 +0x29
github.com/gorilla/mux.(*Router).ServeHTTP(0xc0000ec000, {0x18603f0, 0xc0003d22a0}, 0xc000162f00)
        /Users/theobouwman/go/pkg/mod/github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1c5
net/http.serverHandler.ServeHTTP({0xc0003fa930?}, {0x18603f0?, 0xc0003d22a0?}, 0x6?)
        /usr/local/go/src/net/http/server.go:2938 +0x8e
net/http.(*conn).serve(0xc0001c9320, {0x18617e0, 0xc0003fa3c0})
        /usr/local/go/src/net/http/server.go:2009 +0x5f4
created by net/http.(*Server).Serve in goroutine 45
        /usr/local/go/src/net/http/server.go:3086 +0x5cb
alvinbaena commented 1 year ago

I see you have converted the WWDC certificate to PEM format. The code only supports reading the certificate in CER format, which is the one the it's originally in.

Could you try again using the certificate without converting it?

theobouwman commented 1 year ago

@alvinbaena yes it fixed the issue thanks!

But the generated .pkpass is invalid:

c := passkit.NewBoardingPass(passkit.TransitTypeAir)
    field := passkit.Field{
        Key:   "name",
        Label: "Name",
        Value: passInfo.name,
    }

    c.AddHeaderField(field)
    c.AddPrimaryFields(field)
    c.AddSecondaryFields(field)
    c.AddAuxiliaryFields(field)
    c.AddBackFields(field)

    pass := passkit.Pass{
        FormatVersion:      1,
        TeamIdentifier:     "xxxxxx",
        PassTypeIdentifier: "xxxxxx",
        OrganizationName:   "xxxxxx",
        SerialNumber:       "1234",
        Description:        "Card",
        BoardingPass:       c,
        Barcodes: []passkit.Barcode{
            {
                Format:          passkit.BarcodeFormatQR,
                Message:         "https://example.com/1234",
                MessageEncoding: "utf-8",
            },
        },
    }
alvinbaena commented 1 year ago

I will close this issue, and continue on the other one you have opened (#11) .