Questions tagged [openssl]
GENERAL USE QUESTIONS ARE OFF-TOPIC. OpenSSL is an open source software toolkit that implements the SSL/TLS protocol, as well as a general cryptographic library. Use this tag for questions about interacting with OpenSSL in a programming context.
openssl
16,719
questions
0
votes
0
answers
10
views
Self signed certificate doesn't apply
I have a site https://example.com. I want to add certificate when particular port is called like https://exampme.com:5000. What I do is this:
var options = {
key: fs.readFileSync('/var/www/...
1
vote
0
answers
9
views
Does the UBI 8 image not support OpenSSL versions beyond 1.1.1k?
I have a critical component that relies on OpenSSL version 1.1.1n with custom patches and fixes. Previously, this component was running on a Debian image, but now we are transitioning to UBI8. Despite ...
-2
votes
0
answers
21
views
Why TLSv1.3 encrypt data is slower than TLSv1.2
I know that TLSv1.3 handshaking is faster than TLSv1.2, so I tried to upgrade our application to support it. But after performance comparison, we found that packets delay increase obviously, Here is ...
0
votes
0
answers
11
views
armhf: openssl-libcrypto-fix: cannot execute binary file: Exec format error
I'm trying to use miniconda on a project on rpi4b but I can't get it initialized. The problem seems to be the 32-bit operating system which starts to be out of use. It's a fresh install of bookworm.
I ...
0
votes
0
answers
11
views
stunnel error in loading configuration generated by openssl?
I am getting errors thrown when reloading an stunnel configuration file which tries to verify a certificate from a remote server. After some hunting, the errors seem related to openssl (ver 1.1.1i) ...
1
vote
0
answers
12
views
ERR_SSL_CLIENT_AUTH_CERT_NEEDED when sending custom client certificate from Electron
I have been trying to send a certificate (in the form of a .pem file) from Electron to my backend (using gevent) and encountering the following error
(node:18946) electron: Failed to load URL: https://...
0
votes
0
answers
50
views
Python ssl library not using a certificate that should be available on the machine
I'm facing a SSL issue when trying to use OpenAI python SDK library on Azure App Service. The issue seems to be comming from the fact that I'm connecting via API Gateway that uses company's self-...
1
vote
1
answer
39
views
How to automatically create the OID (SHA-256) in MbedTLS / OpenSSL?
I am using MbedTLS in firmware. I successfully received a remote file and an encrypted hash of it that was encrypted with a private key (via OpenSSL). I used mbedtls_sha256() to locally make my own ...
0
votes
0
answers
28
views
OpenSSL Signing Errors due to configuration file and crypto/bio/bss_file
I've been struggling with creating an intermediate certificate authority on Windows 10/11 and using it to sign a non-OCSP end instrument certificate.
The root CA can create and sign an end-instrument ...
0
votes
0
answers
16
views
Create certificate with SAN included (by command line arguments)
I am using OpenSSL 3.0 to create a certificate with a SAN included.
openssl genrsa -out server.key 2048
openssl req -new -key server.key -out server.csr -subj "/C=US/O=SAM/OU=Certs/CN=HaHa" ...
1
vote
1
answer
57
views
ECDSA signature getting truncated
I am trying to create an ECDSA signature and it's getting created perfectly most of the time but sometimes it's getting truncated randomly like the r and s value are both supposed to be 48 but ...
0
votes
1
answer
45
views
mariadb ssl problem: ERROR 2026 (HY000): TLS/SSL error: Validation of SSL server certificate failed
this will be extremely detailed as I can't solve this problem. I have a website developed with java servlet and jdbc, whose connection method is:
private static synchronized Connection ...
0
votes
0
answers
31
views
SSL Module Unavailable in Python: Configuring TLS/SSL for pip on Rocky Linux 9
The issue arises when attempting to install flask-oidc==1.4.0 and okta==0.0.4 using pip on a Rocky Linux 9 server. The error stems from the absence or misconfiguration of the SSL module within Python, ...
0
votes
1
answer
36
views
MQTT client cannot publish to brocker using MQTTS : certificats are valid in port 443 but not in port 8883
I want to publish data on a privately MQTT server (brand new, but i have not so much information about it) and I need to use TLS (port 8883).
Removing the certificat validation on client side allow ...
0
votes
0
answers
13
views
how to create dtls server using pyopenssl
Im very new to this,
I need to do the following command as a python code using the library pyopenssl.
openssl s_server -dtls -cert certfile -key keyfile -cert_chain chainfile -accept ipaddress:port
...