crypto/x509: check that private key matches the issuer #37845
I have checked several examples and couldn't find out why my client certificate was invalid, until @FiloSottile pointed out that I'm trying to sign the cert with its own key.
A check is possible as we pass the public key.
Behaviour: after successful creation of certificate on connection checks fail with "x509: ECDSA verification failure"
Expected behaviour: CreateCertificate would return an error stating signing with own key will not be a successful tactic.
The text was updated successfully, but these errors were encountered: