-
#1351 added option to load certificate from ASN.1 encoded buffer and #1450 allows to export peer certificate(s) in ASN.1 form as well.
While there is no pressing need for this on Windows with Schann…
-
CertificateSet used in create_degenerate_pkcs7 causes the certificates order to change.
Accoridng to RFC: https://tools.ietf.org/html/rfc8894#section-3.3.2.1:
>The reply must contain the issued cer…
-
I can get a certiifcate against a Windows NDES server (with one-time passords) using:
# scepclient-linux-amd64 -server-url https://ndes.example.com/certsrv/mscep/mscep.dll/pkiclient.exe -private-ke…
-
Found another serialisation / deserialisation case that stopped working since openssl 1.0.1/RHEL6.
In this case we're creating a degenerate PKCS7 signed object as per https://tools.ietf.org/html/rf…
-
## Use Case
If a user has noexec set on their tmp directory, bolt tasks will fail to execute.
When using the ssh transport, the error in this situation is very clear:
```
Failed on remote-sys…
-
I would just like to ask if the library uses PKCS5? It isn't explicitly noted anywhere I think, although my guess is that it uses PKCS5?
The library can decode PKCS7 but the padding is of course in…
-
As of now, go-keyring only supports "plain" to transfer secrets.
It would be nice if go-keyring would support dh-ietf1024-sha256-aes128-cbc-pkcs7 as well as defined in here:
https://specifications.f…
-
**Describe the bug**
I have set up my vault server with EC2 login as suggested in the docs [here](https://registry.terraform.io/modules/hashicorp/vault/aws/latest/examples/vault-ec2-auth). I use the …
-
Now that openssl can be used, it might be worth having
PDF32000_2008.pdf "7.6.4 Public-Key Security Handlers"
and support
Filter "/Adobe.PubSec" and SubFilter "/adbe.pkcs7.s5"
for decrypt…
-
With openssl 1.1.1 rsassa-pss is supported. During my tests I could successfully verify certificates or certificate chains where this algorithm was used.
Unfortunately the verification of a timestamp…