Questions tagged [openssl]

1

votes
0

answer
136

Views

Generate pem pkcs8 with key rsa nodejs

I have a .key file with password and I need to get the .pem file with RSA PKCS8 method with NodeJS function. The command I use to do it with OpenSSL is the following openssl pkcs8 -inform DER -in file.key -out file.pem -passin pass:passwordkey
Moises Aleman
1

votes
1

answer
190

Views

Error while installing SSL in Apache

I am following these steps for SSL : openssl req -new -newkey rsa:2048 -nodes -keyout domain.key -out domain.crt This works fine. openssl req -text -noout -verify -in domain.crt Works good. openssl rsa -in domain.key -check > RSA key ok writing RSA key > -----BEGIN RSA PRIVATE KEY----- > > > ........
helpdoc
1

votes
0

answer
196

Views

rtc::Thread::ProcessMessages Crash

When I use WebTRTC Video, I got the delegate method, And I got the RTCICEGatheringState == RTCICEGatheringComplete, then Crashed. Please help me. peerConnection:(RTCPeerConnection *)peerConnection iceGatheringChanged:(RTCICEGatheringState)newState * thread #28, name = 'Thread 0x0x10a706e70', stop re...
李大戮
1

votes
0

answer
183

Views

urlopen error [Errno 54] Connection reset by peer

Exception Location: /Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/urllib2.py in do_open, line 1198 Mac OS X, Django Version: 1.8.19, Python Version: 2.7.13, Request Method: GET, OpenSSL 0.9.8zh 14 Jan 2016 Hi, does anybody resolve the problem? pip install pyopenssl ndg-httpsclient...
ernekyan
1

votes
0

answer
68

Views

I need to compile a program for a platform which doesn’t support dynamic linking. How to mix openssl 1.0.2f and openssl1.1 when using ld?

I need to compile a project for an embedded Unix compatible system which doesn’t support dynamic linking (there is still a kernel and executables loaded by files). I´m not a developer of the project, but I´m interested in running it on a low power device. There is a patch for compiling binutils...
user2284570
1

votes
0

answer
35

Views

Combine two methods and decrypt android assets with write

How can i combine this two methods and make one smaller method and write decrypt file direct? openssl decrypt cbc: char *aes_decrypt_cbc(char *in, int inLen, int *outLen) { unsigned char Key[AES_BLOCK_SIZE + 1]; unsigned char ivec[AES_BLOCK_SIZE]; AES_KEY AesKey; memset(Key, 0x00, sizeof(Key)); memc...
Freedom
1

votes
0

answer
277

Views

Angular - making a https api call with ssl and keypairs

I currently using http but now I need to shift to https. I have configured back-end with https and ssl (Java Spring). So the problem is that I have searched I fined lack of info on how to configure angular(client-side) to work with keypairs and ssl in order to call https APi`s. So maybe somebody hav...
chirvas chirvas
1

votes
1

answer
363

Views

Verify server certificate using open_ssl and curl

I have an embedded device (running mbedTLS) which can contain only a very limited number of server certificates and I want to verify the PEM file I'm putting on the device with curl. I'm using icanhazip.com (IPv6) to verify. To create the PEM file I use openSSL: openssl s_client -connect icanhazip.c...
thomas.fogh
1

votes
0

answer
1.2k

Views

Getting error in Vmware “pip is configured with locations that require TLS/SSL, however the ssl module in Python is not available.”

I am struggling in installing Django using pip on Vmware. I have tried almost every option available. Command: [[email protected] src]# pip3.6 install django Output: [[email protected] src]# pip3.6 install django pip is configured with locations that require TLS/SSL, however the ssl module in Python is not avai...
Danish Nomani
1

votes
1

answer
219

Views

SSL - create client.crt and client.key for Python requests call

I'm new to Python and have been struggling with this for hours now, so I thought perhaps someone within the community would be able to help. I am trying to connect to a 3rd party enterprise server which is not a global CA. I have the following files my_csr.key (which I created myself) and is just th...
TF Newby
1

votes
1

answer
577

Views

Generating XML signature

I've been stuck trying to generate a valid way to sign my xml for two days now. This is how a signature part should look like: cTKLzl3+JJitmqnEmdv4x/h3HZU= GBDvnBoVHlJJ+96+aVqS34Ei7jHRDXm7n21SeFxD42Cqah1FXK0lCz6z/lp3ptDPYMLljCcoYYSX miRdD3/in4inMmn6nb/ZGVPHo26K+gphPg3ChhZGz5YA1cLTaBNMhC0yqSNuuqNnyxP...
Tomas
1

votes
1

answer
175

Views

OpenSSL - Working in local system but not in other LAN systems [Intranet]

I am using OpenSSL to create SSL certificates to make my web application runnable with https to overcome issues to access microphone in chrome as it stopped allowing access now days without https. We only need to make it runnable in our Intranet, its not getting live to world. I used this link to c...
Abhishek Parmar
1

votes
0

answer
143

Views

Error while trying to create a Laravel project - OpenSSL Error messages:Failed to enable crypto

I've been struggling to create a Laravel project for hours, I've searched a lot and I couldn't figure out a solution for this problem. I hope someone had the same problem before or know how can I solve this. Here we go: I'm trying to create a simple project in composer through this command: laravel...
CrisnaXtha
1

votes
1

answer
65

Views

openssl api funtion reference issue

I am trying to generate and play around with openssl eliptic curves. running this: from the documentation EC_GROUP *curve; if(NULL == (curve = EC_GROUP_new_by_curve_name(NID_secp224r1))) handleErrors(); EC_KEY *key; if(NULL == (key = EC_KEY_new_by_curve_name(NID_secp224r1))) handleErrors(); if(1 !=...
NoahPerkovich
1

votes
1

answer
32

Views

ECDSA Key pair generation output error

I tried the below code to generate the key pair, but it prints the 8 byte data which is nothing but memory address. Could anybody shed light on what is the issue, how to print the 256 bit/32 byte private key & its corresponding public key I am running the program in VS 2010 & installed openssl win32...
Kumar
1

votes
0

answer
219

Views

Decrypting with OpenSSL gets bad decrypt ( C++ )

I am currently using the AES-CBC-256 method to decrypt a simple test string that is encrypted using the same method via php openssl. The exact error I'm getting is as follows: 11324:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:.\crypto\evp\evp_enc.c:531: The code being us...
frostyowned
1

votes
2

answer
254

Views

how to keep SubjectAltName as as commonName in openssl conf file

I am working on building a Certificate Authority on my centos server. I have completed the setup following OpenSSL Cookbook (great stuff) from https://www.feistyduck.com/books/openssl-cookbook/ The concepts explained in the book and procedure is very simple and worked like charm. However, I feel it...
Kunal Shah
1

votes
1

answer
1.1k

Views

Generate SHA-3 hash in C++ using OpenSSL library

I've searched extensively for a code example that uses OpenSSL's recently implemented SHA-3 algorithm for hashing but couldn't find any. There are code examples on SHA-1 and SHA-3 but a quick search in the library folders reveal that there isn't even a SHA3 function name in OpenSSL v1.1.1? I've sear...
timhuang77
1

votes
1

answer
359

Views

Replace Mcrypt Encription with OpenSSL Encription for OpenCart CMS

I have OpenCart 1.5.6.4 with encryption.php file in system library folder. The codes in encryption.php are : For migration from php 5.6 to php 7.2 , I need to replace Mcrypt Encription with OpenSSL Encription. I have replaced mcrypt_create_iv(32, MCRYPT_RAND) with openssl_random_pseudo_bytes(32, tru...
Pasakgroup
1

votes
1

answer
599

Views

Getting SSL error in dotnet command line

I got this issu since this morning. I was not able anymore to restore/build/add package from dotnet command line. I got the following error : » dotnet build Microsoft (R) Build Engine version 15.7.179.6572 pour .NET Core Copyright (C) Microsoft Corporation. Tous droits réservés. Restauration des...
Erwan
1

votes
0

answer
214

Views

How to use CRLs in pyOpenSSL?

I looked extensively online if this question was answered elsewhere and it was not. When trying to use CRLs in the python openssl library, we are getting 'certificate unknown' errors. Specifically, when the crl has a revocation of a cert that is not used in the handshake of the ssl connection, there...
Joe N
1

votes
0

answer
1.1k

Views

openssl create CA, server certificate, and client certificate

I'm trying to use helm with tls so I followed https://github.com/kubernetes/helm/blob/master/docs/tiller_ssl.md I generated certificate authority and used it to generate clients and servers certificate using bellow openssl genrsa -out ./ca.key.pem 4096 openssl req -key ca.key.pem -new -x509 -days 7...
yara mohamed
1

votes
0

answer
45

Views

Nodejs, TLS and only allow certain client certificates

I'm running NodeJS with TLS and have created a server like so: const tls = require('tls'); const fs = require('fs'); const options = { key: fs.readFileSync('server-key.pem'), cert: fs.readFileSync('server-cert.pem'), rejectUnauthorized: true, requestCert: true, ca: [ fs.readFileSync('clientX-cert.pe...
Alfred Balle
1

votes
1

answer
186

Views

Neo4j Bolt with TLS and self-signed certificate: Certificate Verify Failed

I'm trying to set up Neo4j with TLS enabled for the Bolt Communication on CentOS7. The server is currently installed as a system service. I have generated a self-signed certificate and key: sudo openssl genrsa -des3 -out /var/ssl/ca.key 4096`` sudo openssl req -new -x509 -days 365 -key /var/ssl/ca...
Alex Barry
1

votes
1

answer
417

Views

Unable to connect Tight VNC Viewer using SSL

Ive downloaded the Enhanced Tight VNC Viewer (http://www.karlrunge.com/x11vnc/ssvnc.html) and followed instructions to connect the viewer on my local machine(running Win 7) to another machine running the x11vnc server. The remote machine is running ubuntu 16.04 and has x11vnc server installed (v0.9....
Abbas
1

votes
1

answer
32

Views

open-ssl only encrypts strings that have more than 15 characters

im using open-ssl in a project and want to encrypt firstname and surname of users. I discovered a strange behavior from open-ssl: only strings that have more than 15 characters are encrypted. Is it my fault or something not documented?
myyvee
1

votes
1

answer
179

Views

Homebrew package installation with homebrew installed keg-only libraries? How to do it?

I'd like to install curl with openssl via homebrew. I did it like this brew install curl --with-openssl Before that I installed the homebrew openssl, which is version 1.0.2 at the moment. Since this openssl is keg-only and Apple provides also an outdated system version of openssl, Homebrew suggests...
avermaet
1

votes
1

answer
379

Views

Java/Kotlin AES-128-CBC encryption produces different result than OpenSSL

I'm trying to implement aes-128-cbc encryption in Kotin/Java. Unfortunately encryption-results differ from OpenSSL-output using same arguments. Arguments: Data: [[[1532347727425, 6481]]] Key: f70559cb976123807855fd9081f17760 IV: b7e5daacd367e143d20a0b536507a6d6 Kotlin-Implementation: const val AES...
user10126644
1

votes
0

answer
104

Views

android OpenSSLSessionImpl finalize SEGV_MAPERR crash

Recently we rewrite our Android application from bottom to up(contains lots of java and native code), maybe change some native library init order; we use OkHttp as our network library. OkHttp version: 3.10.0.1 OkHttpClient OkHttpClient.Builder builder = new OkHttpClient.Builder(); builder.connectTim...
linc
1

votes
1

answer
98

Views

How do I know if Qt links against openssl, and which one?

Looking at the libs (:/Qt/5.11.0/5.11.0/gcc_64/lib/) of Qt5.11.0, I was wondering which one was linking openssl. So I ran the following: for lib in `ls *.so`; do ldd $lib | grep ssl; done And I got no output, suggesting that none of the libraries are linking against openssl. But I believe that Qt mu...
JonesV
1

votes
0

answer
911

Views

TCPDF: getimagesize(): SSL operation failed with code 1 error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed

I've been using TCPDF. In my local machine, TCPDF works fine, but it throws an error in the actual server. The error message is as follows. Message: getimagesize(): SSL operation failed with code 1. OpenSSL Error messages: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify...
Hiroki
1

votes
2

answer
1.9k

Views

PHP Warning: openssl_decrypt(): IV passed is 32 bytes long which is longer than the 16 expected by selected cipher

I need to implement openSSL in my application, because we had to change the version from 5.6 to version 7.2 I would like to understand how to solve this problem. Any doubts that arise about my environment, or how I am using the application, just ask that I will respond.
Jonatas Rodrigues
1

votes
1

answer
102

Views

i2d_ASN1_OBJECT issue

I am trying to encode to DER the ASN1_OBJECT using openssl lib. There is a function i2d_ASN1_OBJECT that is documented in https://www.openssl.org/docs/man1.1.0/crypto/i2d_X509.html, also I have an example code that does work (for another object type): unsigned char *smder = NULL; int smderlen, r; sm...
Leonid
1

votes
0

answer
152

Views

Compile project in visual studio with OpenSSL as a static library

My Visual Studio project works when OpenSSL is loaded dynamically but breaks when I use OpenSSL as a static library. The error: Severity Code Description Project File Line Suppression State Error LNK2019 unresolved external symbol _sscanf referenced in function _OPENSSL_cpuid_setup libcrypto32MTd.li...
Niv
1

votes
1

answer
109

Views

bash script read user input and export it as variable

I am trying to make a script to generate csr file via openssl. I want to prompt user to provide additional alt_names. Openssl.cnf is static and can't do much inside. It is ok if user needs 1 SAN so I can export it via system variables. [alt_names] DNS.1=${ENV::SAN} If I need more SANs then synta...
pi7er0s
1

votes
0

answer
74

Views

How to generate two factor authentication key-store(.p12) to connect with remote server

Follow the below steps to generate keystore(.p12). OpenSSL setup 1) Download OpenSSL https://sourceforge.net/projects/openssl/files/openssl-1.0.2j-fips-x86_64/openssl-1.0.2j-fips-x86_64.zip/download 2) Unzip and set its path in system variable path. Path : C:\OpenSSL-Win64\bin OPENSSL_CONF : C:\Open...
Damodar Singh
1

votes
1

answer
43

Views

How do I get to the same results as the Linux crypt and salt output?

I used the following command on my Ubuntu machine 'openssl passwd -crypt - salt pass book' to generate a salted password. What hash is the output made up of? e.g SHA-512, MD5 etc. Also, i'm wondering how it's made up. For example, is it made by hashing 'passbook' together? I need more information on...
BubbleMonster
1

votes
0

answer
56

Views

Is there any way to use python OpenSSL module to convert certificate from pkcs7 format to pem format

Is there any way to use python OpenSSL module to convert a certificate from pkcs7 format to pem format? I saw this link: Is there any OpenSSL function to convert PKCS7 file to PEM with a C++ answer, but is there any way in python? I have a pkcs7 format certificate needed to be converted to pem forma...
zhang shengping
1

votes
0

answer
92

Views

brew update unable to access github

I'm trying to run brew update and getting this message: fatal: unable to access 'https://github.com/Homebrew/homebrew-core/': error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version I'm really unsure what this is telling me. I ran brew upgrade and it seems to have gone about...
gph
1

votes
1

answer
225

Views

OpenSSL - Multithread environment - C++

I'm using non-blocking sockets and OpenSSL 1.1.0 to create a simple web server. The clients requests is handled inside 4 threads and the threads is created using C++ ( std::thread ). My question is: Can we use the C++ threads to make OpenSSL thread safe for each client request? I ask this because i...
John

View additional questions