KeyVault Merge Certificate (BadParameter) ASN1 bad tag value met #2834
Labels
Client
This issue points to a problem in the data-plane of the library.
customer-reported
Issues that are reported by GitHub users external to the Azure organization.
KeyVault
needs-team-attention
Workflow: This issue needs attention from Azure service team or SDK team
question
The issue doesn't require a change to the product in order to be resolved. Most issues start as that
Service Attention
Workflow: This issue is responsible by Azure service team.
Hi,
When Generating a certificate signed by an unknown CA, I am hitting the error "(BadParameter) ASN1 bad tag value met" when trying to merge the certificate back at the end.
My certificate is PEM format it looks a bit like this:
Im giving it a bit of sanitization using the following:
Out the end of this my certlist looks a bit like this:
[b'MIIC1zCCAb8CCQDr9JUJilWe......snip.....YRSHKC6obU=']
The reason I have gone for this is in the code: https://github.com/Azure/azure-sdk-for-python/blob/master/azure-keyvault/azure/keyvault/key_vault_client.py
The Type of type of x509_certificates is list[bytearray]. However when I fire this at my keyvault using:
key_vault_client.merge_certificate(KEY_VAULT_URI, certname, certlist)
I get this back:
I have tried to submit the merge via the portal and all is ok, after trying via the python SDK. And I think that the list of bytearray above is correct as if I try to submit a certificate for another csr/key I get an expected:
(BadParameter) Public key from x509 certificate and key of this instance doesn't match
I haven't had much joy on google or stack overflow, everything about "ASN1 bad tag value met" seems to be quite old and about certificates in IIS.
Please let me know if you need any further information.
Thanks
Daniel
The text was updated successfully, but these errors were encountered: