From owner-freebsd-current Fri May 5 20:10:29 2000 Delivered-To: freebsd-current@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 5670437BE59; Fri, 5 May 2000 20:10:27 -0700 (PDT) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id UAA24693; Fri, 5 May 2000 20:10:27 -0700 (PDT) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Fri, 5 May 2000 20:10:27 -0700 (PDT) From: Kris Kennaway To: Steve Price Cc: current@freebsd.org Subject: Re: RSA decrypt problems In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 5 May 2000, Steve Price wrote: > [Fri May 5 20:46:19 2000] [error] OpenSSL: error:1E06D401:RSAref > routines:func(109) :reason(1025) You can interpret these error codes by looking up the defines in - for example, these two are: #define RSAREF_F_RSA_REF_PRIVATE_DECRYPT 109 #define RSAREF_R_DATA 0x0401 which doesn't tell you much in itself. However: > Doing 2048 bit private rsa's for 10s: RSA private encrypt failure > 14674:error:1E065406:RSAref routines:func(101) > :reason(1030):/usr/src/secure/lib/librsausa/../../../crypto/openssl/crypto/../rsaref/rsaref.c:125: > 14674:error:1E065406:RSAref routines:func(101) > :reason(1030):/usr/src/secure/lib/librsausa/../../../crypto/openssl/crypto/../rsaref/rsaref.c:125: > 1 2048 bit private RSA's in 0.00s #define RSAREF_F_RSAREF_BN2BIN 101 #define RSAREF_R_LEN 0x0406 RSARef can't handle keys > 1024 bits long. This is a design limitation which the license forbids us from fixing. Does your webserver use a long key? Kris ---- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message