16,761 questions
-1
votes
0
answers
13
views
Sending images from Orthanc to DICOM TLS Server: "DicomAssociation - connecting to AET \"MY_AET\": TLS error: bad extention"
I'am trying to send a Dicom image/pasient from my Orthanc server to a DicomServer with TLS. The errr message i get is: "Details": "DicomAssociation - connecting to AET "MY_AET"...
0
votes
0
answers
10
views
Error trying to log in with Keycloak from Nextjs app
I test a simple Nextjs application https://medium.com/inspiredbrilliance/implementing-authentication-in-next-js-v13-application-with-keycloak-part-1-f4817c53c7ef that logs in with Keycloak. When I run ...
- 1,748
0
votes
0
answers
24
views
Convert BER in DER [closed]
The PKCS#7 standard (.p7m files) allow employing the BER encoding for the body part.
However, I would like to have a DER-encoded contents.
While DER is a subset of BER, the opposite does not hold.
Is ...
- 11
0
votes
0
answers
24
views
How to use TPM2 key with password protection in OpenSSL (handle-based key)
I'm working on a project where I generate a TPM-protected private key using tpm2-pytss in Python, and then try to use that key in OpenSSL to generate a certificate.
However, I face an issue when the ...
- 83
0
votes
0
answers
26
views
`OpenSSL SSL_read: SSL_ERROR_SYSCALL, errno 0` error when using `git clone`?
When I open up git, I try to clone something for a project:
$ git clone https://github.com/example/project.git
Cloning into 'project'...
At first, it seems like it's doing its thing. But a few ...
- 96
0
votes
0
answers
39
views
Cannot access private key via code for .NET generated certificate, but can with Open SSL generated certificate
I want to be able to generate CA root and server certificates using .NET. The end goal is to use these to secure inter-service gRPC comms, but right now everything is running locally.
When I generate ...
- 7,497
1
vote
0
answers
28
views
OpenSSL with p11-kit-client.so fails inside Nginx container (but p11tool works via UNIX socket)
I'm setting up nginx inside a Docker container (proxy container) to use a PKCS#11 private key via OpenSSL + engine_pkcs11. The private key is managed by SoftHSM2 in another container (HSM container), ...
- 49
0
votes
1
answer
32
views
code signing windows installer - publisher unknown - osslsigncode
I am trying to code sign a windows installer. I am processing the certificate through Godaddy and then trying to use osslsigncode to sign my installer with it.
It seems successful, but then when I ...
- 645
0
votes
0
answers
49
views
CMake unable to find openssl in Windows
I'm trying to build a minimal C++ example using cpr and jwt-cpp via CMake with FetchContent. I'm on Windows, and I've installed OpenSSL using:
choco install openssl
It installed to the default path:
C:...
- 217
-4
votes
1
answer
72
views
What is meant by "This function does nothing unless OpenSSL support is enabled"?
The PHP manual entry for mysqli_ssl_set() says:
Used for establishing secure connections using SSL. It must be called before mysqli_real_connect(). This function does nothing unless OpenSSL support ...
- 2,653
0
votes
0
answers
28
views
Seeking experties on two way SSL with two microservices [closed]
currently I am working on a project where I have to do 2 way SSL with two servers, currently I managed to do with one by storing JKS keystore in my resource and passing it by setting SSL context in ...
0
votes
0
answers
46
views
Why does OpenSSL's -crl_check always show "CRL not found"? [closed]
I have generated a root certificate, a target certificate, and a CRL file issued by the CRL. However, when I use the OpenSSL -crl_check command, I keep getting the error message: "error 3 at 0 ...
0
votes
1
answer
96
views
Is it normal that public key generated from private key are different each time?
I have a C source code that generate a 2048 bit RSA key (it's working, no problem with it) :
int main(void)
{
RSA *lptypRSA = NULL;
BIGNUM *lptypBIGNUM = NULL;
BIO *lptypBIOPublic = NULL;
...
- 2,508
0
votes
0
answers
45
views
OpenIdDict using PKCS#11 / HSM interface?
I am working on a project that uses OpenIdDict für user authentication, thus, generating and validating JWTs (Java web tokens, HTTP header "Bearer").
Currently, the prototype relies on a ...
- 2,688
-1
votes
0
answers
73
views
How can I prevent or disable IV increment behavior in AES-GCM mode with OpenSSL?
I'm using OpenSSL to encrypt messages with AES-GCM mode. By default, when calling:
EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_IV_GEN, ivlen, iv);
OpenSSL automatically increments the IV internally (...
- 13