On Sun, Dec 19, 2004, Mike_SSL wrote: > > I think that old console bug is the problem. > ... > > I hadn't noticed it before, but I started all over again and paid > close attention to every step ... when I generate my initial CA cert and > key, after I enter a passphrase (and verify it), the very next query > (for Organization Name) doesn't wait for input. > ... > > Is there an easy fix for this? > > > Well, I'll be darned! > > Using ^J instead of ENTER / ^M to terminate the passphrase will get > around this bug in the ca.c module. > > OpenSSL now stops at the "Sign the certificate" query and a Y response > works. I have a 01.pem in my newcerts directory. And it looks good. > > How do I write this up so that it can be fixed in the next version of > OpenSSL?
It's a bug in Windows console handling rather than OpenSSL. One workaround was needed for Win95 (which I no longer have access to) and it wasn't needed for Win98/NT/XP. Maybe ME needs something else. I don't have access to ME either so I can't check this myself. This is in crypto/ui/ui_openssl.c with the define WIN_CONSOLE_BUG. It should be compiled in by default. An alternative is to include the passphrase on the command line using -passin. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
