NVIDIA Shield: App won't read private key from PEM file

Submitted by Ceejus on #1

I used OpenSSL to generate a server key but when I select the server.pem file on the Shield app, the error message says "Error: RSA Private Key not found in PEM File". However, I've got the file open in NotePad and am looking right at the private key in it. When I used the 2013 guide to generate the key, OpenSSL did automatically prompt me to enter a password for the certificate request but I just hit enter, so as far as I know it isn't using one, though perhaps I would need to force OpenSSL to not prompt for one?

Submitted by Michael on Fri, 2024/03/29 - 19:50

#2

I will update the app in the Play Store with the fix.  In the mean time, edit the server.pem file and wrap the private key section with the heading

-----BEGIN RSA PRIVATE KEY-----

and the end is

-----END RSA PRIVATE KEY-----

It is looking for those strings

 

Submitted by Ceejus on Sat, 2024/03/30 - 05:39

#3

Thanks, that worked, but after selecting the ca.pem file on the client, I am getting this in the logs repeatedly:

2024-03-29 15:38:27 INFO  :Error -0x0044 calling ssl net connect to ###.##.##.##:7574, NET - The connection to the given server / port failed

Submitted by Michael on Sat, 2024/03/30 - 14:30

#4

OK, remove that change to the pem file and put it back to how it was.

Ive updated the virtualhere app in the play store now to 4.6.3. When you get that update give it a try again and it should be ok. I tested with the ssl instructions here and it works ok for me.

Submitted by Ceejus on Sat, 2024/03/30 - 14:38

#5

Thanks. I have to wait for the Shield's Play Store to make the update available; it's not yet showing anything. Will give it a shot as soon as it's available.

Submitted by Michael on Tue, 2024/04/02 - 06:24

#6

Sorry it got delayed due to an icon missing, ill update the app again and post to the Play Store

Submitted by Ceejus on Fri, 2024/04/05 - 07:15

#7

Any idea how long it takes Google Play to review updates and roll them out?

Submitted by Michael on Fri, 2024/04/05 - 09:03

#8

Iv submitted it 5 times in the last week, it keeps rejecting it due to "Your icon does not fill the entire icon space." (which they do). I keep tweaking the icons and a see  a new rejection again. So im going to have to email google about this. 

Submitted by Ceejus on Fri, 2024/04/05 - 09:52

#9

Wow. I had heard this process was laughable from others. I guess they weren't kidding.

Submitted by Ceejus on Fri, 2024/04/12 - 06:41

#10

The update came through on the Google Play store today. Got it working. Thanks for fixing this.

One final question: any plans to support client certificates for 2-way authentication through the Shield?

Submitted by Michael on Fri, 2024/04/12 - 08:42

#11

OK great, im very glad it finally go there.

No i think client certs are quite an advanced feature and not many people would need this so its way down in my todo list...