Piotr
Od: Antonio Santagiuliana
Wysłane: wtorek, 12 października 2021 10:50
Do: Piotr Lobacz ; openssl-users@openssl.org
Temat: Re: Store Mgmt and keys loading ( keyform ENG )
in general, I think that despite what I read in previous replies,
with the operation:
dgst --pro
Hi Antonio,
I was discussing about this problem about half a year ago in here. The problem
was itself in .net library but it concerned RSA_FLAG_EXT_PKEY in RSA_METHOD
which is wrong. Yo can read it in here
https://github.com/dotnet/runtime/issues/53345. The clue of my problem was that
this flag
Ok i have written printf in src/p11_rsa.c to check if i'm entering the
RSA_set_flags callback and yes i am. Printf is being displayed but i still got
this error, which shouldn't be any more.
Od: openssl-users w imieniu użytkownika
Piotr Lobacz
Wysła
Sorry my bad i was checking bad position in the file...
Od: openssl-users w imieniu użytkownika
Piotr Lobacz
Wysłane: wtorek, 1 czerwca 2021 17:34
Do: Selva Nair
DW: openssl-users@openssl.org
Temat: ODP: CSR creation using pkcs11 dynamic engine
Ok not fixed
Ok not fixed in 0.4.11 it is fixed in master branch... i need to build it from
master.
Od: openssl-users w imieniu użytkownika
Piotr Lobacz
Wysłane: wtorek, 1 czerwca 2021 17:18
Do: Selva Nair
DW: openssl-users@openssl.org
Temat: ODP: CSR creation using
Hi Selva,
btw. i have found one issue in libp11 package
https://github.com/OpenSC/libp11/issues/304 and i have used 0.4.10 i will check
firstly with 0.4.11 and give you answer.
BR
Piotr
Od: Selva Nair
Wysłane: wtorek, 1 czerwca 2021 17:15
Do: Piotr Lobacz
DW
need to set this flag
RSA_FLAG_EXT_PKEY in EVP_PKEY object which i don't know how to do is it even
possible?
BR
Piotr Łobacz
Od: openssl-users w imieniu użytkownika
Piotr Lobacz
Wysłane: sobota, 29 maja 2021 20:12
Do: Selva Nair
DW: openssl-users@openss
check this on monday and keep you inform. Have a nice weekend.
BR
Piotr
Od: Selva Nair
Wysłane: sobota, 29 maja 2021 03:34
Do: Piotr Lobacz
Temat: Re: CSR creation using pkcs11 dynamic engine
Hi,
I will also check these flags of my RSA object using RSA_test_flags
e: piątek, 28 maja 2021 20:47
Do: Piotr Lobacz
DW: openssl-users@openssl.org
Temat: Re: CSR creation using pkcs11 dynamic engine
Hi,
On Fri, May 28, 2021 at 1:44 PM Piotr Lobacz wrote:
>
> Ok, i have found out that dotnet OpenSsl library has it's own code for
> verification is key
cryptography is being made by the engine module. I
think that there should be some other method verifing if key is private. Maybe
somebody could give me a hint?
BR
Piotr
Od: openssl-users w imieniu użytkownika
Piotr Lobacz
Wysłane: piątek, 28 maja 2021 13:10
Do
Hi all,
i'm trying to generate CSR using C# System.SecurityCryptography.Openssl library
together with pkcs11 token library. The whole proces for this in command line
works without any problems. For execution of this process i use command:
openssl req -new -subj '/C=PL/ST=Gdansk/L=Gdansk/CN=softg
Ok,
so from what you are saying, my order like this:
dynamic --> set SO_PATH --> LOAD and then set all parameters of
the engine that SO_PATH implements. i.e MODULE_PATH
is correct?
BR
Piotr
Od: Selva Nair
Wysłane: czwartek, 27 maja 2021 00:44
Do: Piotr
t SO_PATH --> LOAD and then set all parameters of
the engine that SO_PATH implements.
does the order which i used is also correct one?
BR
Piotr
Od: openssl-users w imieniu użytkownika
Piotr Lobacz
Wysłane: środa, 26 maja 2021 22:32
Do: Selva Nair
DW: o
Yeah,
that is what i have figured it out and written it in my previous message:] but
big thx for help.
BR
Piotr Lobacz
Od: Selva Nair
Wysłane: środa, 26 maja 2021 15:52
Do: Piotr Lobacz
DW: openssl-users@openssl.org
Temat: Re: dynamic engine load
Hi,
On Wed
Ok i have found the problem:] The solution was to move the whole conditional
if(Id == "pkcs11" {..} to the end of the function and now all is working
properly.
BR
Piotr Lobacz
Od: openssl-users w imieniu użytkownika
Piotr Lobacz
Wysłane: środa, 26
libpkcs11.so
[Success]: ID:pkcs11
[Success]: LIST_ADD:1
[Success]: LOAD
[Success]: MODULE_PATH:/usr/lib/libckteec.so
Loaded: (pkcs11) pkcs11 engine
but as i said it before, when using my method i get an error on call for
ENGINE_ctrl_cmd_string method. The error code which i'm get
m
wrong.
BR
Piotr
Od: Michael McKenney
Wysłane: poniedziałek, 24 maja 2021 14:17
Do: Piotr Lobacz ; openssl-users@openssl.org
Temat: RE: CSR generation using pkcs11 token engine from C# code
Usually I reserve C# for Windows servers. I use PHP on Ubuntu o
BR
Piotr
Od: Michael McKenney
Wysłane: poniedziałek, 24 maja 2021 13:28
Do: Piotr Lobacz ; openssl-users@openssl.org
Temat: RE: CSR generation using pkcs11 token engine from C# code
I wrote this script years ago when I switched to Godaddy 10 site certificates.
I don't use it from
oint me at least for
a C solution of this issue.
Best regards
Piotr Lobacz
[https://softgent.com/wp-content/uploads/2020/01/Zasob-14.png]<https://www.softgent.com>
Softgent Sp. z o.o., Budowlanych 31d, 80-298 Gdansk, POLAND
KRS: 674406, NIP: 9581679801, REGON: 367090912
www.softgent.co
19 matches
Mail list logo
