Hello, I'm using USB server optimized for Pi2, and can't make it work with TLS. Without TLS it starts and works normally, but when I configure it for TLS, the process fails to start and in the log file I see the following error:
Error -0xffffda9a loading SSL Certificate file <path_to_file_with_key_and_certificate>, X509 - The extension tag or value is invalid : ASN1 - Actual length differs from expected length
(Where <path_to_file_with_key_and_certificate> is real path to the file containing private key and certificate in PEM format).
The file with key and cert should be fine since it is successfully used by a web server on the same machine. The certificate is not self-signed, it is issued by internal corporate CA. I've tried server versions 4.5.0 and 4.8.6, both give the same result. Any ideas?
.
Virtualhere turns on strict certificate checking and its saying you have extra fields that you shouldnt. Can you paste the cert base64 into a certificate test site and see if it shows issues.
I've tested the certificate…
I've tested the certificate at https://www.sslchecker.com/ and https://www.https.in/, it was processed normally. (Well, the latter one complained about missing "State" component in Subject field, but that's rather typical and I don't think it should cause problems).
Would that help you to troubleshoot if I provide the certificate?
.
OK yes email it to me mail [at] virtualhere.com (mail[at]virtualhere[dot]com) thanks