> > 1. Make sure your password contains only ascii letters and digits, there > may be > some other chars that get encoded to different byte values on the computer > that > creates the .p12 and on the android. >
for testing I've been using "password" "longpassword" and "pass". Doesn't seem to matter which one I use, if a key/cert combo fails even changing the password doesn't matter. > > 2. ISTR that some other SSL implementations choke on RSA keys with certain > values of the most of least significant bits. I think there is some > obscure openssl > options to avoid those keys, but I don't know if this affects Android. > I'm typically building large keys (8k), wonder if that may also be related. I'll look for that least significant bit flag and see if that makes a diff. I'll also test out on 1K and 2K keys. > > 3. I suspect that some of the .p12 code in Android is no longer being > tested by > Google QA due to an ongoing lawsuit over ownership of one of the test files > previously used for regression testing that part of Android. That can't be good.
