In message <[EMAIL PROTECTED]> on Wed, 11 Jun 2003 09:21:49 +0200 (METDST), "Charles B
Cranston via RT" <[EMAIL PROTECTED]> said:
rt>
rt> Possible bug in OpenSSL 0.9.6h on Solaris 2.8 with /dev/urandom
rt>
rt> The rsa command fails strangely when attempting to use
rt> both -passin fd:<int> and -passout fd:<int> together. My code was
rt>
rt> openssl rsa -passin fd:5 -des3 -passout fd:7
rt>
rt> and it was reencoding the key with a bad passphrase. Changing to
rt> use the /dev/fd syntax like this:
rt>
rt> openssl rsa -passin file:/dev/fd/5 -des3 -passout file:/dev/fd/7
[...]
rt> This seems to fail on the read of the input key, that is, trying
rt> to decrypt the input with aaaaaaaaaaaa even though I expected it
rt> to fail when doing the reincryption. It gets:
rt>
rt> read RSA key
rt> unable to load key
rt> 1628:error:06065064:digital envelope routines:EVP_DecryptFinal:bad
rt> decrypt:evp_enc.c:277:
rt> 1628:error:0906A065:PEM routines:PEM_do_header:bad decrypt:pem_lib.c:455:
rt> The pass phrase is bbbbb
rt> tpk.pem: No such file or directory
I'm surprised that you don't get an error like this:
Error reading password from BIO
The reason is that fds can't really work, because BIO_gets() is used,
and is not implemented for fds (which is a bug in our code).
--
Richard Levitte \ Tunnlandsv�gen 3 \ [EMAIL PROTECTED]
[EMAIL PROTECTED] \ S-168 36 BROMMA \ T: +46-8-26 52 47
\ SWEDEN \ or +46-708-26 53 44
Procurator Odiosus Ex Infernis -- [EMAIL PROTECTED]
Member of the OpenSSL development team: http://www.openssl.org/
Unsolicited commercial email is subject to an archival fee of $400.
See <http://www.stacken.kth.se/~levitte/mail/> for more info.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
