Open valentinpi opened 2 years ago
Sry for the late response. Can you provide example key and cert? I'd like to reproduce the problem you are observing.
Hi, we have switched to a different approach now, but I dug out some recent commits. Here is the certificate generation:
openssl ecparam -name brainpoolP160r1 -noout -genkey -outform PEM -out private.pem
openssl req -x509 -nodes -key private.pem -out cert.pem -config ../cred.conf
And here are the Client keys. The Client uses tinyDTLS:
openssl ecparam -name brainpoolP160r1 -genkey -outform DER -out private.der
openssl ec -inform DER -in private.der -outform PEM -out private.pem
openssl ec -inform DER -in private.der -pubout -outform DER -out public.der
openssl ec -inform PEM -in private.pem -pubout -outform PEM -out public.pem
To be honest, I now do believe that it is an OpenSSL issue, since the integrated OpenSSL client does not work either. Maybe one should put up an issue on that repository.
I have also looked into the FFI code and it seems that brainpoolP160r1
is not supported, but switching that inside of the code does not really help as we got some other issues, but I cannot remember right now.
Greetings, I get this error:
Not just when using this library in my project, but also when testing the example.
The certificate I am using (self signed test certificate) can be obtained by:
Where
cred.conf
is just a standard certificate configuration file of form:Let me know if I can provide more information, because I am not sure what would help. I know that the program launches if you comment out the following in
context.cc
: