Bug#403072: [Pkg-gnutls-maint] Re: Bug#403072: exim4-daemon-light
fails to use equifax SSL cert/key obtained from "1&1" hosting
Felix Palmen
fmp at palmen.homeip.net
Fri Dec 15 02:56:54 CET 2006
Hallo James,
please forget the last infos, this backtrace was corrupted, I don't know
why. I got a correct backtrace by compiling the original upstream source
of 1.6.0 in developer-mode and running gdb with libtool.
The error was thrown from x509_b64.c:449. The reason was very obvious
then: My key just starts with -----BEGIN PRIVATE KEY----- (no RSA or
DSA).
After a little research, I found that this could mean it's in PKCS#8
format. Indeed, I could convert it using OpenSSL's pkcs8 module and
GnuTLS works fine with the converted RSA key.
So the problem is just that GnuTLS doesn't understand keys in PKCS#8
format. Maybe this should get mentioned in README.
Greetings,
Felix
--
| /"\ ASCII Ribbon | Felix M. Palmen (Zirias) http://zirias.ath.cx/ |
| \ / Campaign Against | fmp at palmen.homeip.net encrypted mail welcome |
| X HTML In Mail | PGP key: http://zirias.ath.cx/pub.txt |
| / \ And News | ED9B 62D0 BE39 32F9 2488 5D0C 8177 9D80 5ECF F683 |
More information about the Pkg-gnutls-maint
mailing list