On Sun, May 17, 2026 at 08:21:03AM +0000, Mikolaj Kucharski wrote: > Hi. > > I have Debian Forky (Debian testing) setup and generated self-signed > certificate on that machine. > > I cannot TLS connect to server with that certificate configured, with > OpenBSD's openssl as a client. Problem is visible with Python, curl, > wget. As expected, node-js can successfully connect and fetch the > content. IP address 192.168.201.130 is the Debian machine.
> Public Key Algorithm: Ed25519 > Ed25519 Public-Key: > pub: > 2d:cd:10:d8:76:11:69:48:e6:2a:1f:55:fc:45:5b: > 65:6a:ec:a8:30:89:be:20:3c:82:d4:7e:be:94:16: > 8a:02 LibreSSL's libssl doesn't support Ed25519 certificates. It's not hard to add that support, but given that it's rare and CAs in the WebPKI don't support it, I never pushed the diff over the line.
