Forum: UserClub BBS

Trying to import Signed EC Cert/Key from another tool.

From Michael J. Ryan@1:103/705 to GitLab issue in main/sbbs on Sat Jan 23 15:38:19 2021

open https://gitlab.synchro.net/main/sbbs/-/issues/205

I'm trying to import a signed EC/Cert key from a Caddy instance. The files in question are in PEM format.EC Key looks like...```-----BEGIN EC PRIVATE KEY----- ...DATA_HERE...-----END EC PRIVATE KEY-----```EC Cert looks like...```-----BEGIN CERTIFICATE-----MIIEBDCCA4qgAwIBAgIQVyDabKzO8adfPYtnJoQrETAKBggqhkjOPQQDAzBLMQsw ...DATA_HERE...-----END CERTIFICATE----------BEGIN CERTIFICATE----- ...DATA_HERE...-----END CERTIFICATE----------BEGIN CERTIFICATE----- ...DATA_HERE...-----END CERTIFICATE-----```The code I'm trying to use is...```require("acmev2.js", "ACMEv2");load("base-64.js");var keyin = "/caddy-data/caddy/certificates/acme.zerossl.com-v2-dv90/roughneckbbs.com/roughneckbbs.com.key"var certin = "/caddy-data/caddy/certificates/acme.zerossl.com-v2-dv90/roughneckbbs.com/roughneckbbs.com.crt"var sks_fname = backslash(system.ctrl_dir)+"ssl.cert";var maincnf_fname = backslash(system.ctrl_dir)+"main.cnf";function getSystemPassword() { var maincnf = new File(maincnf_fname); if (!maincnf.open("rb", true)) { throw("Unable to open "+maincnf.name); } maincnf.position = 186; // Indeed. var syspass = maincnf.read(40); syspass = syspass.replace(/\x00/g,''); maincnf.close(); return syspass;}function readFile(file) { var f = new File(file); if (!f.open("rb", true)) { throw("Unable to open "+f.name); } var ret = f.read(); f.close(); return ret;}function getKey(file) { const raw = readFile(file); const middle = raw.trim() .replace(/^[-]+[^\-]+[-]+/, '') .replace(/[-]+[^\-]+[-]+$/, '') .replace(/[\s\r\n]/g, ''); var kc = new CryptContext(CryptContext.ALGO.ECDSA); kc.set_key(raw); return kc;}function getCert(file) { var cert = readFile(file); cert = ACMEv2.prototype.create_pkcs7(cert); cert = new CryptCert(cert); return cert;}var cert = getCert(certin);var key = getKey(keyin); // genKey(); writeln(key);var ks = new CryptKeyset(sks_fname, CryptKeyset.KEYOPT.CREATE);ks.add_private_key(key, getSystemPassword());ks.add_public_key(cert);ks.close();```Any help would be appreciated... if I knew the expected format for `ctrl/ssl.cert` it might also be helpful.
--- SBBSecho 3.12-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

From Deuce@1:103/705 to GitLab note in main/sbbs on Mon Jan 25 19:13:54 2021

https://gitlab.synchro.net/main/sbbs/-/issues/205#note_1354

It's PKCS#15 encoded with RFC 5083 encryption on the private key.
--- SBBSecho 3.12-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

From Deuce@1:103/705 to GitLab note in main/sbbs on Mon Jan 25 21:12:20 2021

https://gitlab.synchro.net/main/sbbs/-/issues/205#note_1364

With the latest code from CVS, it's now possible to use certtool to import/export PKCS#12 files.
--- SBBSecho 3.12-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

From Deuce@1:103/705 to GitLab issue in main/sbbs on Mon Jan 25 21:12:20 2021

close https://gitlab.synchro.net/main/sbbs/-/issues/205
--- SBBSecho 3.12-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Who's Online
Recent Visitors
- Lowprofile
  Tue Apr 2 15:55:37 2024
  from somewhere,AZ via Telnet
- Guest
  Tue Apr 9 20:44:32 2024
  from Y via Telnet
- sistermary190
  Tue Apr 9 19:39:03 2024
  from Los Anglos,CA via HTTP
- Guest
  Tue Apr 16 21:33:19 2024
  from Y via Telnet

System Info

Sysop:	Rempala
Location:	Richlands, NC
Users:	103
Nodes:	10 (0 / 10)
Uptime:	73:35:38
Calls:	157
Files:	6
Messages:	110,470

Trying to import Signed EC Cert/Key from another tool.

Who's Online

Recent Visitors

System Info