You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Ed25519 PEMs created from dfx cannot be parsed by other standard tools or libraries (e.g. Rust library pkcs8). This likely only affects pems generated from old dfx versions because we have switched to using Secp256k1 as the default.
It seems that dfx or ic-agent cannot parse properly formatted ed25519 pkcs8 v2 strings or PEM files. This may require a fix depending on how urgent we think it is. PKCS8 v2 / PEM format for ed25519 is in a sorry state, because standard tools like openssl has yet to support it Add support for PKCS#8 v2 (RFC 5958 - Asymmetric Key Packages) openssl/openssl#10468.
Maybe other people have better suggestions?
The text was updated successfully, but these errors were encountered:
Just want to make a note that using ring::signature::Ed25519KeyPair::generate_pkcs8() has a bug that creates wrongly formatted pkcs8 strings or PEMs. See this thread for more details briansmith/ring#1464.
What it means for us:
Maybe other people have better suggestions?
The text was updated successfully, but these errors were encountered: