Questions tagged [openssl]
GENERAL USE QUESTIONS ARE OFF-TOPIC. OpenSSL is an open source software toolkit that implements the SSL/TLS protocol, as well as a general cryptographic library. Use this tag for questions about interacting with OpenSSL in a programming context.
openssl
16,710
questions
-5
votes
0
answers
18
views
Java.security.NoSuchAlgorithmExeption [closed]
I Am setting up ssl keystore and Trust store passwords and both have been made default .
I am using Javax.net.ssl.keystore and truststore in command line .
expecting ssl secure password to be picked ...
0
votes
0
answers
18
views
Self signed certificate doesn't apply
I have a site https://example.com. I want to add certificate when particular port is called like https://exampme.com:5000. What I do is this:
var options = {
key: fs.readFileSync('/var/www/...
1
vote
0
answers
11
views
Does the UBI 8 image not support OpenSSL versions beyond 1.1.1k?
I have a critical component that relies on OpenSSL version 1.1.1n with custom patches and fixes. Previously, this component was running on a Debian image, but now we are transitioning to UBI8. Despite ...
-2
votes
0
answers
23
views
Why TLSv1.3 encrypt data is slower than TLSv1.2
I know that TLSv1.3 handshaking is faster than TLSv1.2, so I tried to upgrade our application to support it. But after performance comparison, we found that packets delay increase obviously, Here is ...
0
votes
0
answers
12
views
armhf: openssl-libcrypto-fix: cannot execute binary file: Exec format error
I'm trying to use miniconda on a project on rpi4b but I can't get it initialized. The problem seems to be the 32-bit operating system which starts to be out of use. It's a fresh install of bookworm.
I ...
0
votes
0
answers
15
views
stunnel error in loading configuration generated by openssl?
I am getting errors thrown when reloading an stunnel configuration file which tries to verify a certificate from a remote server. After some hunting, the errors seem related to openssl (ver 1.1.1i) ...
1
vote
0
answers
12
views
ERR_SSL_CLIENT_AUTH_CERT_NEEDED when sending custom client certificate from Electron
I have been trying to send a certificate (in the form of a .pem file) from Electron to my backend (using gevent) and encountering the following error
(node:18946) electron: Failed to load URL: https://...
0
votes
0
answers
54
views
Python ssl library not using a certificate that should be available on the machine
I'm facing a SSL issue when trying to use OpenAI python SDK library on Azure App Service. The issue seems to be comming from the fact that I'm connecting via API Gateway that uses company's self-...
1
vote
1
answer
43
views
How to automatically create the OID (SHA-256) in MbedTLS / OpenSSL?
I am using MbedTLS in firmware. I successfully received a remote file and an encrypted hash of it that was encrypted with a private key (via OpenSSL). I used mbedtls_sha256() to locally make my own ...
0
votes
0
answers
31
views
OpenSSL Signing Errors due to configuration file and crypto/bio/bss_file
I've been struggling with creating an intermediate certificate authority on Windows 10/11 and using it to sign a non-OCSP end instrument certificate.
The root CA can create and sign an end-instrument ...
0
votes
0
answers
17
views
Create certificate with SAN included (by command line arguments)
I am using OpenSSL 3.0 to create a certificate with a SAN included.
openssl genrsa -out server.key 2048
openssl req -new -key server.key -out server.csr -subj "/C=US/O=SAM/OU=Certs/CN=HaHa" ...
1
vote
1
answer
59
views
ECDSA signature getting truncated
I am trying to create an ECDSA signature and it's getting created perfectly most of the time but sometimes it's getting truncated randomly like the r and s value are both supposed to be 48 but ...
0
votes
1
answer
48
views
mariadb ssl problem: ERROR 2026 (HY000): TLS/SSL error: Validation of SSL server certificate failed
this will be extremely detailed as I can't solve this problem. I have a website developed with java servlet and jdbc, whose connection method is:
private static synchronized Connection ...
0
votes
0
answers
31
views
SSL Module Unavailable in Python: Configuring TLS/SSL for pip on Rocky Linux 9
The issue arises when attempting to install flask-oidc==1.4.0 and okta==0.0.4 using pip on a Rocky Linux 9 server. The error stems from the absence or misconfiguration of the SSL module within Python, ...
0
votes
1
answer
36
views
MQTT client cannot publish to brocker using MQTTS : certificats are valid in port 443 but not in port 8883
I want to publish data on a privately MQTT server (brand new, but i have not so much information about it) and I need to use TLS (port 8883).
Removing the certificat validation on client side allow ...