X509 certifikate

Stanislav_Hruska · July 1, 2020, 6:00pm

I created an X509 certificate (using X509v3CertificationGenerator, but also programmatically).
I'm getting incorrect results when parsing.
The problem is with diacritics. Parsing with X509v3CertificationGenerator is OK
I follow exactly your example on page 48!
How do I get a remedy?

PS
I tried your demo, but you can't enter Hash function and Key length!

Marion · July 2, 2020, 7:25am

Hi Stanislav,
X509v3CertificationGenerator needs to be improved with the latest version of TMS Cryptography Pack, it is better to use the pack demo.
You have found a issue in the demo, you need to change the signature algorithm combo box and change again to "RSASA v1.5" to have the ability to enter a hash function and a key length. I will modify that.

Stanislav_Hruska · July 2, 2020, 7:41am

Let me know when it will be, let me try it. I am sending you a certificate with a key for support, so that they have something to try on.

Stanislav_Hruska · July 2, 2020, 7:43am

Promised files

(Attachment JasotSVB.crt is missing)

(Attachment JasotSVB.key is missing)

Stanislav_Hruska · July 2, 2020, 7:45am

Promised files

Certificate.zip (2.72 KB)

Marion · July 2, 2020, 7:48am

Thank you, I have downloaded your files, you can delete your message with link to files if you want.

Stanislav_Hruska · July 2, 2020, 7:51am

Another note. You have a predetermined AltName order
I have to use

FName1 := FX509Crt.AltName6;
FName2 := FX509Crt.AltName5;
FName3 := FX509Crt.AltName4;
FName4 := FX509Crt.AltName3;
FName5 := FX509Crt.AltName2;
FName6 := FX509Crt.AltName1;

Marion · July 2, 2020, 7:57am

Another note. You have a predetermined AltName order

In the Crypto Pack demo or in X509v3CertificationGenerator?

Marion · July 2, 2020, 9:00am

I have just made changes to add Unicode characters support in TX509Certificate component.
A new version will be released soon.

Stanislav_Hruska · July 2, 2020, 9:47am

Another note. You have a predetermined AltName order

In the Crypto Pack demo or in X509v3CertificationGenerator?

Certificate created in X509v3CertificationGenerator
Parsing in Delphi.
That was a year ago.

Stanislav_Hruska · July 2, 2020, 9:49am

Certificate created in X509v3CertificationGenerator
Parsing in Delphi.
That was a year ago.

Marion · July 2, 2020, 3:38pm

The 4.2.4 version of TMS Cryptography Pack has just been released.
You can test certificate generation with unicode characters.

Stanislav_Hruska · July 2, 2020, 4:02pm

Demo generation and parsing are OK.
I'm still getting bad results in the program.
I will send the image for support.

Stanislav_Hruska · July 2, 2020, 4:07pm

I used a certificate created with Demo

Certificate.zip (24.2 KB)

Stanislav_Hruska · July 2, 2020, 4:33pm

That's all right. I didn't watch the demo, so I didn't have a line
FX509Crt.Unicode: = yesUni;
Thank you very much

Stanislav_Hruska · July 2, 2020, 5:04pm

Please, what is the difference between IssuerXXX and XXX? Why they are there when their content is the same. Well thank you.

Marion · July 3, 2020, 6:48am

Issuer fields are the fields of the certificate owner that has been used to sign the current certificate and subject fields are the ones of the current certificate owner. These are mandatory fields in X509v3 specifications.

Stanislav_Hruska · July 3, 2020, 6:59am

Well thank you