将旧样式.p12转换为.pem(不支持算法RC2-40-CBC)
似乎仍然存在一些工具,这些工具生成了使用RC2-40-CBC加密的私钥,
尽管我能够使用Keytool -ImportKeystore将其导出到新的密钥存储中摆脱该算法。
如何将它们转换为PEM?
OpenSSL失败:
digital envelope routines:inner_evp_generic_fetch:unsupported:crypto/evp/evp_fetch.c:349:Global default library context, Algorithm (RC2-40-CBC : 0), Properties ()
There seem to exist still some tools which generate private keys encrypted with RC2-40-CBC
Although I'm able to export it to a new key store using keytool -importkeystore it seems that I can't get rid of this algorithm.
How to convert them to PEM ?
OpenSSL fails with:
digital envelope routines:inner_evp_generic_fetch:unsupported:crypto/evp/evp_fetch.c:349:Global default library context, Algorithm (RC2-40-CBC : 0), Properties ()
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
Openssl具有称为legacy的密钥算法提供商。只需尝试:opensslhas a key algorithm provider calledlegacy. Just try with:您可以在OpenSSL配置中将其倒置。只需修改文件
/etc/ssl/openssl.cnf查找
[default_sect]e节,然后将其更改为:然后找到
[provider_sect]and code> and code>使用:保存文件。
You can change it permamently in OpenSSL configuration. Just modify file
/etc/ssl/openssl.cnfFind the
[default_sect]section and change it to:Then find the
[provider_sect]and use:Save file.