ExtractPrivateKey Error: "sha224 dsa is not supported" When Signing CSR

VCL TMS Cryptography Pack
1

Hello @Bernard,

I am using TMS Crypto Pack to sign a Certificate Signing Request (CSR) with an RSA private key, but I am encountering the following error:

ExtractPrivateKey: sha224 dsa is not supported

Code Snippet:

X509Cert.KeyFilePath := 'RSA_2048_PRIVATE_KEY.pem';
X509Cert.CrtFilePath := 'CA.crt'; 
X509Cert.SignCSR(CsrX509.CsrFilePath, 'signed_csr.crt');

Issue Details:

  • My private key (RSA_2048_PRIVATE_KEY.pem) is an RSA 2048-bit key.
  • The CA certificate (CA.crt) is correctly loaded.
  • The error message suggests an issue with SHA-224 or DSA, but I am only using RSA.
  • The files (private key, CA certificate) are attached for reference.

ca.zip (2.4 KB)

Thanks in advance!

2

Hi Helmut,
Will check when back. Looks like a default parameter is not properly set.