x509 icon indicating copy to clipboard operation
x509 copied to clipboard

Published 20 hours ago verified publisher icon PeculiarVentures

Support for encrypted PEM

Open TJKoury opened this issue 4 years ago • 3 comments

Any plans to support OpenSSL encrypted PEM? For now looking to support PKCS8 using pbeWithMD5AndDES-CBC to be interoperable with OpenSSL.

TJKoury avatar Oct 15 '21 13:10 TJKoury

Not currently. OpenSSL also supports AES-GCM based PEM files. We’d accept a PR to support them.

rmhrisk avatar Oct 15 '21 18:10 rmhrisk

MD5 and DES-CBC algorithms are not supported by WebCrypto API. You also need an extended crypto module.

webcrypto-liner (for Browser) and @peculiar/webcrypto (for NodeJS) implement DES-CBC.

microshine avatar Oct 22 '21 07:10 microshine

@microshine can you provide an example of how to load an encrypted PEM (that is accepted by openssl) into x509 using your @peculiar/webcrypto library?

CMCDragonkai avatar Feb 22 '23 17:02 CMCDragonkai