Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Certificate and Private Key Format: PKCS1 and PKSC8 certificate types need different private key header format #39

Open
jost0612 opened this issue Jan 25, 2023 · 0 comments
Open

Certificate and Private Key Format: PKCS1 and PKSC8 certificate types need different private key header format #39

jost0612 opened this issue Jan 25, 2023 · 0 comments
Assignees
@lhajba

Comments

@jost0612
Copy link

Issue on page: https://github.com/opentelekomcloud-docs/elastic-load-balancing/blob/main/umn/source/certificate/certificate_and_private_key_format.rst

There are two versions of PKCS (Public-key Cryptography Standards): version 1 and version 8. For version #1 the keyword "RSA" is needed in the header and footer. For version #8 keyword "RSA" is not needed and upload fails if it is included.

The current help center document only refers to version 1, which is a pitfall if customers use version #8 and follow the documentation.

I suggest to modify the document to reflect how each version needs to be treated correctecly.

See also internal OTC internal incident ONS-12686 for reference.

Further reference: http://polarssl.org/kb/cryptography/asn1-key-structures-in-der-and-pem/
@lhajba lhajba self-assigned this Jul 17, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@lhajba lhajba

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@lhajba @jost0612