Hubert Kario via RT
2016-06-24 15:42:59 UTC
I can't list PKCS#12 file information when it is encrypted with
AES-256-CBC with PKCS#5 v2.0 PBE
openssl req -x509 -newkey rsa -keyout localhost.key -out localhost.crt -subj /CN=localhost -nodes -batch
openssl pkcs12 -export -out bundle.p12 -in localhost.key -nocerts -passout pass: -name server-key -keypbe AES-256-CBC
openssl pkcs12 -info -in bundle.p12 -passin pass: -noout
will print:
MAC Iteration 2048
PKCS7 Data
Shrouded Keybag:
instead of:
MAC Iteration 2048
PKCS7 Data
Shrouded Keybag: PKCS#5 v2 PBE with AES-256-CBC, Iteration 2048
I've tested both 1.0.1 and current master (24bf6f3c7fccd9)
AES-256-CBC with PKCS#5 v2.0 PBE
openssl req -x509 -newkey rsa -keyout localhost.key -out localhost.crt -subj /CN=localhost -nodes -batch
openssl pkcs12 -export -out bundle.p12 -in localhost.key -nocerts -passout pass: -name server-key -keypbe AES-256-CBC
openssl pkcs12 -info -in bundle.p12 -passin pass: -noout
will print:
MAC Iteration 2048
PKCS7 Data
Shrouded Keybag:
instead of:
MAC Iteration 2048
PKCS7 Data
Shrouded Keybag: PKCS#5 v2 PBE with AES-256-CBC, Iteration 2048
I've tested both 1.0.1 and current master (24bf6f3c7fccd9)
--
Regards,
Hubert Kario
Senior Quality Engineer, QE BaseOS Security team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., PurkyÅova 99/71, 612 45, Brno, Czech Republic
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4588
Please log in as guest with password guest if prompted
Regards,
Hubert Kario
Senior Quality Engineer, QE BaseOS Security team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., PurkyÅova 99/71, 612 45, Brno, Czech Republic
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4588
Please log in as guest with password guest if prompted