Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Verification error: Invalid key for curve: "Public key is not a point"
See original GitHub issueHello
I have an issue during verification verifyAuthenticationResponse - in the function convertPublicKeyToPEM
The issue: Invalid key for curve: "Public key is not a point"
it’s throw by this function jwkToPem:
const ecPEM = jwkToPem({
kty: 'EC',
// Specify curve as "P-256" from "p256"
crv: COSECRV[crv as number].replace('p', 'P-'),
x: (x as Buffer).toString('base64'),
y: (y as Buffer).toString('base64'),
});
The service is running locally
It’s happen on macOs Catalina 10.15.7 when I try to verify Touch Id
Server algorithm - p256
Could you please help me?
Issue Analytics
- State:
- Created a year ago
- Comments:5 (2 by maintainers)
Top Results From Across the Web
ECDH P-521 public key point not on curve according to java ...
I am passing the public key as a JWT, and have verified the transferred va ... InvalidKeySpecException: invalid KeySpec: Point not on curve, ......
Read more >What happens when a public key point does not lie ... - Reddit
The verification requires knowing the correct point, but other than failing the verification I don't see any implications when given a point ......
Read more >elliptic curves - How do I validate Curve448 public keys?
With Weierstrass curves, it's important to verify that the peer's public key is actually a point on the curve, and not the point...
Read more >Invalid public key in attestation certificate - Yubico Forum
Verification should be done using the public key certified in the attestation certificate. Unfortunately, that public key seems to be invalid.
Read more >Android Trying to get Public Key from public key byte array ...
InvalidKeySpecException : invalid KeySpec: point not on curve. The procedure: First I produce my own public key, then turn server HEX key ......
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
I found a lot of discussions in
discussionspage. Looks like it’s not possible. Thank you for your time.Thank you for looking around, I’m glad to see you were able to find previous discussions around this. Your story is yet another point convincing me to try for a “universal” refactor to make SimpleWebAuthn work in more environments than just Node. I’ll attempt that as part of addressing #268