Salesforce

pkiutil fails when creating 4096 bit key pair

Printable View
« Go Back

Information

 
Titlepkiutil fails when creating 4096 bit key pair
URL Namepkiutil-fails-when-creating-4096-bit-key-pair
Article Number000247243
EnvironmentProduct: OpenEdge
Version: 11.7, 12.x
OS: All supported platforms
Question/Problem Description
The pkiutil command-line utility returns the following error when trying to create a 4096 bit key pair:
The key size must be 512, 1024, or 2048
 
Steps to Reproduce- Open a Proenv session.
- Run: pkiutil -keysize 4096 -newreq test
Clarifying Information
Error MessageThe key size must be 512, 1024, or 2048
Defect NumberOCTA-58609
Enhancement Number
Cause
The pkiutil utility is mistakenly blocking a keysize of 4096 bits from being created.
Resolution
Until the fix is available, use the workaround below.
 
Workaround
Follow these steps:
  • Upgrade to OpenEdge 11.7.5 or later.
  • Make a backup of the %DLC%\bin\pkiutil.bat file if on Windows or $DLC/bin/pkiutil if on Linux.
  • Modify the pkiutil script and change the following lines:
# size has to be 512, 1024, or 2048
if ($_size == 512 || $_size == 1024 || $_size == 2048) {
    $KEYSIZE=$_size;
}
else {
    print "The key size must be 512, 1024, or 2048\n";
    exit 1;
}
 
With the following: 
# size has to be 512, 1024, 2048 or 4096
if ($_size == 512 || $_size == 1024 || $_size == 2048 || $_size == 4096) {
    $KEYSIZE=$_size;
}
else {
    print "The key size must be 512, 1024, 2048 or 4096\n";
    exit 1;
}

 

 
Notes
Keyword Phrase
Last Modified Date11/27/2023 11:23 AM
Powered by