Problems with specific certificate/key (Debian Bug #426013)
Nikos Mavrogiannopoulos
n.mavrogiannopoulos at gmail.com
Mon Mar 3 15:37:36 CET 2008
> All, This is now working as desired. I am using exactly the same
> configuration as I detailed in my first post (it was commented, I
> uncommented it.)
>
> MAIN_TLS_ENABLE = yes
> MAIN_TLS_PRIVATEKEY = /etc/exim4/certificates/newserver_co_uk.pem
> MAIN_TLS_CERTIFICATE = /etc/exim4/certificates/newserver_co_uk.crt
>
> Does anyone know if any recent updates could have corrected this
> problem?
The gnutls_certificate_set_x509_key_file() of 2.2.x series of gnutls can
read PKCS8 private keys (when not encrypted). This might have been the
issue.
However if you have indicated that your private key header started as
"BEGIN PRIVATE KEY" you might have helped solve this much earlier :)
regards,
Nikos
More information about the Gnutls-devel
mailing list