-
Can any one help me to create signed request without x509 structure? I need to implement below in using C API
openssl req -nodes -new -newkey rsa:2048 -sha256 -out csr_out.pem
-
I created a python project and used pgpy for encryption. It was tested fine in windows but whenever its uploaded to AWS Lambda it errors out saying "cannot import name 'x509' from 'cryptography.hazmat…
-
Hello all,
for SAML authentication we need to send the client certificate to the keycloak instance.
This is not implemented in the class "SAMLLoginView" yet.
I could not find a way to implement t…
svfrd updated
2 years ago
-
最新版本会间歇性地报证书错误,如:
```
http.Client.Do fail:Get "https://59.111.181.38/api/song/detail?ids=%5B26620638%5D": x509: cannot validate certificate for 59.111.181.38 because it doesn't contain any IP SANs…
-
It is rather untypical that the target of a certificate chain validation is a self-signed cert,
but there are some valid cases, including directly trusted root CA or EE certs.
I recently came acros…
-
Version: 3.0.2 on Ubuntu 22.04LTS
After having fixed issue #18553 to make `-dateopt iso_8601` actually work I found that this only seems to change the date format for `openssl x509 -dates`, but not…
-
I am using Keycloak as an authentication tool for my applications like Rancher, Harbor, and Grafana. However, if I try to log in to Harbor by providing the certs, I get 'Invalid Username or Password'.…
-
I tried openssl in centos and ubuntu using same code, it works well in ubuntun but not in centos.
In centos, the function PEM_read_bio_X509 return NULL,
and using ERR_error_string get "Error readi…
-
The ocspd in master now fails to build because `PKI_X509_ALGOR_VALUE_new_digest` was removed (commented out) with [commit ](https://github.com/openca/libpki/pull/82).
cluck updated
5 months ago
-
Issue found in OpenSSL 1.1.1d; probably in 1.1.0 and higher.
Not found in version 1.0.2 stream.
The depth limit is only checked if trust is X509_TRUST_UNTRUSTED, but missed for X509_TRUST_TRUSTED …