I use the recent release version mbedtls-3.2.1 to load a certificate in which public key algorithm is ed25519, but the function mbedtls_x509_crt_parse_file still returns error 3c80 (PK - Key algorithm is unsupported (only RSA and EC are supported)). Does mbedtls_x509_crt_parse_file support to read ed25519 cert? Or, the certificate with ed25519 public key should be handled by other functions?
mbedtls_pk_parse_keyfile can not read ed25519 private keys either.
The certificate I need to load is as follows. It is a device certificate that is to be exchanged in TLS handshake.
openssl x509 -in device.crt -text -noout
Certificate:
Data:
Version: 1 (0x0)
Serial Number:
32:39:10:4d:56:f2:28:2a:dd:8d:88:41:4d:3b:fd:f7:19:31:a1:7a
Signature Algorithm: ecdsa-with-SHA256
Issuer: C = CN, O = Fake IDM CA
Validity
Not Before: Jul 19 02:24:30 2022 GMT
Not After : Oct 17 02:24:30 2022 GMT
Subject: C = CN, ST = Beijing, L = Beijing, O = MIoT, CN = idm.2202924184.0771944600659ddb53c31df501be63c4c475f38a.9
Subject Public Key Info:
Public Key Algorithm: ED25519
ED25519 Public-Key:
pub:
ea:9b:90:32:2b:62:e2:47:b2:cc:ef:b1:1c:fd:cd:
bd:83:3a:b1:ff:57:b8:61:df:de:13:8f:27:75:9a:
e9:28
Signature Algorithm: ecdsa-with-SHA256
30:45:02:20:4e:92:f0:0d:eb:12:9c:6f:29:58:c2:61:18:37:
90:e0:e7:5e:a6:9d:42:d4:1e:cb:98:fc:6f:14:29:3f:84:77:
02:21:00:cb:45:d5:ee:2e:8c:13:e0:13:30:7a:92:0f:23:9a:
ba:2e:06:3c:81:91:38:42:d7:3d:58:f6:55:2c:28:24:d7