On 12/8/06, Dr. Stephen Henson <[EMAIL PROTECTED]> wrote:
On Fri, Dec 08, 2006, Chris Covington wrote:
> On 12/8/06, Dr. Stephen Henson <[EMAIL PROTECTED]> wrote:
> >> Windows allows up to 32 character passwords. It seems when openssl
> >> exports a 32 character password pkcs12 file, Windows does not
> >> recognize the results, which is unfortunate in my case because I
> >> specifically need a 32 character password (GUID). openssl pkcs12
> >> passwords work correctly <32 characters. Perhaps I can post a 32
> >> character password pkcs12 from openssl and the equivalent (same keys /
> >> export passwords) from Windows? Would that be helpful?
> >>
> >
> >No need, I can create some myself.
> >
> >It is possible I suppose that a 32 character password under Windows
> >excludes
> >the double null terminator. If so then thats a bug on Windows.
>
> Thanks for looking into it! Let me know if I can help in any way.
>
Looks like it is a bug on Windows. A PKCS#12 file with a password longer that
32 characters imports fine in Thunderbird.
Would be it possible for you to duplicate Windows' behavior in the
case of exactly 32 character passwords (32 being the limit)? So that
they can be imported into Windows' stores? That would be very helpful
in our case, where we are using 32 character GUIDs as the passwords
for the pkcs12 bundles.
thanks
Chris
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
