Hello,
I tried to convert my SSH private key from the default format of
ssh-keygen(1) (which is the format described in RFC 4716) to PKCS#8 and
from AES-128-CBC to 3DES, but openssl pkcs8(1) returns with error code 1
if you try to choose an encryption key with more than 50 characters (it
does not complain with 50 characters, but I rather think it overwrites
the last character with '\0').
The declaration of the character array that stores the password locates
in line 86, the calls of input function in line 307 of file apps/pkcs8
in openssl.git.
This is bad behavior in my opinion. ssh-keygen(1) allocates the correct
amount of characters in its input function and therefore also accepts
longer passwords.
Regards,
Jakob Kramer
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
