Closed flihp closed 1 year ago
Just flipped the switch to make this a draft. Looks like I missed the algorithm parameters in the certs.
The culprit was the encoding of the rfc5280 signatureValue. ECDSA signatures are encoded as a SEQUENCE of the r and s integers. My fist, failing pass at this was using the raw r & s (no DER encoding).