那些遇到过的问题

小编Pau*_*aul的帖子

Yubico 私钥证书签名不再适用于 openssl3

我将 PKI CA 证书和私钥存储在 Yubikey 上,并用它来颁发最终用户证书,但从 openssl1 升级到 openssl3 后,这不再起作用。

\n

我用来签署证书请求的脚本适用于 openssl1,但不再适用于 openssl3:

\n
pki_path=~/pki/paul\npin=$(cat ~/yubico/pin.txt)\necho "Yubico PIN: $pin"\nopenssl engine dynamic -pre SO_PATH:/usr/lib/engines-3/pkcs11.so -pre ID:pkcs11 -pre NO_VCHECK:1 -pre LIST_ADD:1 -pre LOAD -pre MODULE_PATH:/usr/lib/opensc-pkcs11.so -pre VERBOSE\nopenssl x509 -engine pkcs11 -CAkeyform engine -CAkey slot_0-id_2 -sha384 -CA $pki_path/ca.crt -req -passin pass:$pin -in $pki_path/reqs/$2.req -extfile x509-types/$1 -days 365 -out $pki_path/issued/$2.crt\ncat $pki_path/issued/$2.crt $pki_path/ca.crt > $pki_path/bundle/$2.crt\n
Run Code Online (Sandbox Code Playgroud)\n

我已经更新了 pkcs11 路径,但其他一切都相同,手动运行命令可以注册引擎,但尝试签名失败。

\n
\xce\xbb ~/pki/scripts/ openssl engine dynamic -pre SO_PATH:/usr/lib/engines-3/pkcs11.so -pre ID:pkcs11 -pre NO_VCHECK:1 -pre LIST_ADD:1 -pre …
Run Code Online (Sandbox Code Playgroud)

ssl openssl pki hardware-security-module yubico

Pau*_*aul
lucky-day
6
推荐指数
1
解决办法
736
查看次数

在dotnet构建或发布期间无法找到包含目录的存储库

我在我的ASP.NET Core 2.2应用程序上添加了对Docker的支持,并在本地测试Docker的命令时发现了dotnet publish -f netcoreapp2.2 -c Release -o out错误。

./IdentityServer.sln

Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "IdentityServer", "IdentityServer\IdentityServer.csproj", "{A435DE31-3D1C-4228-BBD9-0157E849D07D}"
EndProject
Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Dependencies", "Dependencies", "{0A7E3F1D-5162-463F-BAF8-714C7FD37B8C}"
EndProject
Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "IdentityServer4", "dependencies\identityserver4\src\IdentityServer4.csproj", "{3A32B19C-B6FC-4A2D-9421-5A16849B7C2A}"
EndProject
Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "IdentityServer4.AspNetIdentity", "dependencies\identityserver4.aspnetidentity\src\IdentityServer4.AspNetIdentity.csproj", "{0E36AE9A-B9B6-4E1C-B446-82A3265432F8}"
EndProject
Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "IdentityServer.Email", "IdentityServer.Email\IdentityServer.Email.csproj", "{BD699934-C404-4CF4-B77C-511E584D1754}"
EndProject
Run Code Online (Sandbox Code Playgroud)

./IdentityServer/IdentityServer.csproj:https://gist.github.com/paulcsiki/4d3b827af418044dacea0149a2361b81

dotnet restore与解决方案位于同一文件夹中的输出:

  Restore completed in 52.96 ms for /Users/paul/docker/dependencies/identityserver4.aspnetidentity/src/IdentityServer4.AspNetIdentity.csproj.
  Restore completed in 52.96 ms for /Users/paul/docker/dependencies/identityserver4/src/IdentityServer4.csproj.
  Restore completed in 54.56 ms for /Users/paul/docker/IdentityServer/IdentityServer.csproj.
  Restore completed in 52.97 ms for /Users/paul/docker/IdentityServer.Email/IdentityServer.Email.csproj.
Run Code Online (Sandbox Code Playgroud)

dotnet publish -f netcoreapp2.2 …

c# .net-core asp.net-core dotnet-cli

Pau*_*aul
lucky-day
4
推荐指数
2
解决办法
2510
查看次数

标签 统计

.net-core ×1

asp.net-core ×1

c# ×1

dotnet-cli ×1

hardware-security-module ×1

openssl ×1

pki ×1

ssl ×1

yubico ×1