info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
`openssl pkcs8` and -iter option?
7 views
Skip to first unread message
Jeffrey Walton
Jul 23, 2014, 1:33:34 AM7/23/14
to
I'm having trouble getting `openssl pkcs8` to complete.
openssl genrsa -out rsa-priv.pem 1024
openssl pkcs8 -in rsa-priv.pem -inform PEM -topk8 -v1 PBE-SHA1-RC4-128
-iter 1000 \
-out rsa-enc-priv-v1.pem -passout pass:test
When the second command runs, the help is dumped.
I noticed the man page lists the -iter option
(https://www.openssl.org/docs/apps/pkcs8.html), but the help printed
on failure does not.
Any ideas how to make the command work?
*****
Which: /usr/local/ssl/macosx-x64/bin/openssl
Version: OpenSSL 1.0.1g 7 Apr 2014
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openss...@openssl.org
Automated List Manager majo...@openssl.org
openssl genrsa -out rsa-priv.pem 1024
openssl pkcs8 -in rsa-priv.pem -inform PEM -topk8 -v1 PBE-SHA1-RC4-128
-iter 1000 \
-out rsa-enc-priv-v1.pem -passout pass:test
When the second command runs, the help is dumped.
I noticed the man page lists the -iter option
(https://www.openssl.org/docs/apps/pkcs8.html), but the help printed
on failure does not.
Any ideas how to make the command work?
*****
Which: /usr/local/ssl/macosx-x64/bin/openssl
Version: OpenSSL 1.0.1g 7 Apr 2014
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openss...@openssl.org
Automated List Manager majo...@openssl.org
Thulasi Goriparthi
Jul 23, 2014, 2:41:16 AM7/23/14
to
Seems "-iter" option is added to master only in the below commit. By date, it is later than 1.0.1g and probably 1.0.1h too.
commit 8a6c6bbf21cc11ea0fed69a106250af0d734d786
Author: Naftuli Tzvi Kay <rfkr...@gmail.com>
Date: Tue Jun 3 12:48:06 2014 -0700
Added custom PBKDF2 iteration count to PKCS8 tool.
commit 8a6c6bbf21cc11ea0fed69a106250af0d734d786
Author: Naftuli Tzvi Kay <rfkr...@gmail.com>
Date: Tue Jun 3 12:48:06 2014 -0700
Added custom PBKDF2 iteration count to PKCS8 tool.
Jeffrey Walton
Jul 23, 2014, 3:06:59 AM7/23/14
to
> Seems "-iter" option is added to master only in the below commit. By date,
> it is later than 1.0.1g and probably 1.0.1h too.
OK, thanks. Would that be a 1.0.2 option; or a 1.1.0 option?
> it is later than 1.0.1g and probably 1.0.1h too.
On Wed, Jul 23, 2014 at 2:41 AM, Thulasi Goriparthi
<thulasi.g...@gmail.com> wrote:
> Seems "-iter" option is added to master only in the below commit. By date,
> it is later than 1.0.1g and probably 1.0.1h too.
>
> commit 8a6c6bbf21cc11ea0fed69a106250af0d734d786
> Author: Naftuli Tzvi Kay <rfkr...@gmail.com>
> Date: Tue Jun 3 12:48:06 2014 -0700
>
> Added custom PBKDF2 iteration count to PKCS8 tool.
>
> On Wed, Jul 23, 2014 at 11:03 AM, Jeffrey Walton <nolo...@gmail.com> wrote:
>>
>> I'm having trouble getting `openssl pkcs8` to complete.
>>
>> openssl genrsa -out rsa-priv.pem 1024
>> openssl pkcs8 -in rsa-priv.pem -inform PEM -topk8 -v1 PBE-SHA1-RC4-128
>> -iter 1000 \
>> -out rsa-enc-priv-v1.pem -passout pass:test
>>
>> When the second command runs, the help is dumped.
>>
>> I noticed the man page lists the -iter option
>> (https://www.openssl.org/docs/apps/pkcs8.html), but the help printed
>> on failure does not.
>>
>> Any ideas how to make the command work?
>>
Thulasi Goriparthi
Jul 23, 2014, 3:17:09 AM7/23/14
to
I didn't see it with 1.0.2-beta2 released yesterday.
Not sure, if it would be added to the final 1.0.2 release.
Not sure, if it would be added to the final 1.0.2 release.
Matt Caswell
Jul 23, 2014, 6:42:09 PM7/23/14
to
On 23/07/14 08:17, Thulasi Goriparthi wrote:
> I didn't see it with 1.0.2-beta2 released yesterday.
> Not sure, if it would be added to the final 1.0.2 release.
Matt
0 new messages