c712 [Solved] OpenSSL - The FreeBSD Forums
The FreeBSD Forums  

Go Back   The FreeBSD Forums > Ports & Packages > Installation and Maintenance of FreeBSD Ports or Packages
Reload this Page [Solved] OpenSSL
Register FAQ Calendar Search Today's Posts Mark Forums Read

Installation and Maintenance of FreeBSD Ports or Packages Installing and maintaining the FreeBSD Ports Collection or FreeBSD Packages (i.e. third party software).

Reply
 
Thread Tools Display Modes
  #1  
Old August 27th, 2009, 12:45
xolod-ru xolod-ru is offline
Junior Member
  
Join Date: Apr 2009
Posts: 26
Thanks: 0
Thanked 0 Times in 0 Posts
Default OpenSSL
Hi All!
Help please understand, when you create a certificate error ...

Code:
root# mkdir /etc/ssl/sslcert
root# cd /etc/ssl/sslcert
root# openssl req -new -newkey rsa:4096 -nodes -keyout /etc/ssl/sslcert/ca.key -x509 -days 365 \
   -subj /C=RU/ST=Russia/L=Moscow/O=Internet/OU=Internet/CN=localhost/emailAddress=gmail.com@gmail.com -out /etc/ssl/sslcert/ca.crt

Unable to load config info
Generating a 4096 bit RSA private key
.........................................++
.....................++
writing new private key to '/etc/ssl/sslcert/ca.key'
-----
unable to find 'distinguished_name' in config
problems making Certificate Request
1888:error:0E06D06A:configuration file routines:NCONF_get_string:no conf or environment variable:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/conf/conf_lib.c:325:

root# openssl version
OpenSSL 0.9.7e-p1 25 Oct 2004

root# uname -a
FreeBSD 6.4-RELEASE

root# portsnap update
Ports tree is already up to date.

root# cd /usr/ports/security/openssl
root# make install clean

===>  openssl-0.9.8k_3 is marked as broken: No patchset for 0.9.8.
*** Error code 1

Stop in /usr/ports/security/openssl.
Last edited by DutchDaemon; August 27th, 2009 at 12:55.
Reply With Quote
  #2  
Old August 27th, 2009, 13:31
SirDice's Avatar
SirDice SirDice is offline
Moderator
  
Join Date: Nov 2008
Location: Rotterdam, Netherlands
Posts: 13,725
Thanks: 47
Thanked 2,023 Times in 1,862 Posts
Default
Quote:
The following messages are frequently asked about:

Using configuration from /some/path/openssl.cnf
Unable to load config info

This is followed some time later by...

unable to find 'distinguished_name' in config
problems making Certificate Request

The first error message is the clue: it can't find the configuration file! Certain operations (like examining a certificate request) don't need a configuration file so its use isn't enforced. Generation of certificates or requests however does need a configuration file. This could be regarded as a bug.
http://www.openssl.org/docs/apps/req.html#DIAGNOSTICS
__________________
Senior UNIX Engineer at Unix Support Nederland
Experience is something you don't get until just after you need it.
Reply With Quote
  #3  
Old August 27th, 2009, 16:16
xolod-ru xolod-ru is offline
Junior Member
  
Join Date: Apr 2009
Posts: 26
Thanks: 0
Thanked 0 Times in 0 Posts
Default
What other proposals?
Reply With Quote
  #4  
Old August 27th, 2009, 16:28
DutchDaemon's Avatar
DutchDaemon DutchDaemon is offline
Administrator
  
Join Date: Nov 2008
Location: Rotterdam, the Netherlands
Posts: 9,854
Thanks: 30
Thanked 1,892 Times in 1,335 Posts
Default
Not BSD-specific, but it may provide some insight.
http://www.akadia.com/services/ssh_t...rtificate.html

You can also put /usr/src/crypto/openssl/apps/openssl.cnf in /etc/ssl/.
__________________
FreeBSD Forums: Information for New Members | FreeBSD Forums Rules
FreeBSD Resources: The FreeBSD Handbook | Manuals | FAQ | Wiki
Before you post: How to ask questions the smart way
If you must know .. So, what does an Administrator/Moderator do?
---> Do not PM me with FreeBSD questions. I do not work here. <---
Reply With Quote
  #5  
Old August 27th, 2009, 17:03
xolod-ru xolod-ru is offline
Junior Member
  
Join Date: Apr 2009
Posts: 26
Thanks: 0
Thanked 0 Times in 0 Posts
Default
Thank DutchDaemon, works!
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Issues updating to openssl-0.9.8j boga Installing & Upgrading 5 December 3rd, 2009 19:00
FreeBSD-SA-09:08.openssl admin News & Announcements 0 April 22nd, 2009 15:50
Security Question Regarding OpenSSL Fatman Installing & Upgrading 7 January 13th, 2009 19:31
$pathsetting for use openssl-0.9.8i beastie_007 Installing & Upgrading 7 January 10th, 2009 14:08
FreeBSD-SA-09:02.openssl admin News & Announcements 0 January 7th, 2009 22:50


All times are GMT +1. The time now is 13:33.

Contact Us - FreeBSD - Archive - Top

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2013, vBulletin Solutions, Inc.
The mark FreeBSD is a registered trademark of The FreeBSD Foundation and is used by The FreeBSD Project with the permission of The FreeBSD Foundation.
Web protection and acceleration provided by CloudFlare
0