Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Different certinfo output for versions from brew and released binary #1307

Open
michaelDovgal opened this issue Jun 6, 2023 · 0 comments
Open

Different certinfo output for versions from brew and released binary #1307

michaelDovgal opened this issue Jun 6, 2023 · 0 comments

Comments

@michaelDovgal
Copy link

Problem:

  • Two different output for certinfo using cfssl installed from brew and downloaded from Release page on GitHub.
  • Public.Curve.Name part of the output is empty in case cfssl is installed using brew.

Tested environment:

  • M1 Pro Macbook,
  • OS version - Ventura 13.3.1 (a)

Examples of results:

Result for the version installed via brew 
>>> cfssl certinfo -csr some.csr.pem
{
  "Raw": <redacted>,
  "RawTBSCertificateRequest": <redacted>,
  "RawSubjectPublicKeyInfo": <redacted>,
  "RawSubject": <redacted>,
  "Version": 0,
  "Signature": <redacted>,
  "SignatureAlgorithm": 10,
  "PublicKeyAlgorithm": 3,
  "PublicKey": {
    "Curve": {},
    "X":<some value>,
    "Y": <some value>
  },
  "Subject": {
    "Country": null,
    "Organization": null,
    "OrganizationalUnit": null,
    "Locality": null,
    "Province": null,
    "StreetAddress": null,
    "PostalCode": null,
    "SerialNumber": "",
    "CommonName": <redacted>,
    "Names": [
      {
        "Type": [
          2,
          5,
          4,
          3
        ],
        "Value": <redacted>
      }
    ],
    "ExtraNames": null
  },
  "Attributes": null,
  "Extensions": null,
  "ExtraExtensions": null,
  "DNSNames": null,
  "EmailAddresses": null,
  "IPAddresses": null,
  "URIs": null
}

>>> cfssl version
Version: 1.6.4
Runtime: go1.20.3

>>> brew --version
Homebrew 4.0.21
Homebrew/homebrew-core (git revision 9d0b7361d; last commit 2023-06-06)
Result for the version downloaded via curl from release page for darwin arm 64, version 1.6.4 
>>> ./cfssl_1.6.4_darwin_arm64 certinfo -csr some.csr.pem
{
  "Raw": <redacted>,
  "RawTBSCertificateRequest": <redacted>,
  "RawSubjectPublicKeyInfo": <redacted>,
  "RawSubject": <redacted>,
  "Version": 0,
  "Signature": <redacted>,
  "SignatureAlgorithm": 10,
  "PublicKeyAlgorithm": 3,
  "PublicKey": {
    "Curve": {
      "P": <some value>,
      "N": <some value>,
      "B": <some value>,
      "Gx": <some value>,
      "Gy": <some value>,
      "BitSize": 256,
      "Name": "P-256"
    },
    "X": <some value>,
    "Y": <some value>
  },
  "Subject": {
    "Country": null,
    "Organization": null,
    "OrganizationalUnit": null,
    "Locality": null,
    "Province": null,
    "StreetAddress": null,
    "PostalCode": null,
    "SerialNumber": "",
    "CommonName": <redacted>,
    "Names": [
      {
        "Type": [
          2,
          5,
          4,
          3
        ],
        "Value": <redacted>
      }
    ],
    "ExtraNames": null
  },
  "Attributes": null,
  "Extensions": null,
  "ExtraExtensions": null,
  "DNSNames": null,
  "EmailAddresses": null,
  "IPAddresses": null,
  "URIs": null
}
>>> ./cfssl_1.6.4_darwin_arm64 version
Version: 1.6.4
Runtime: go1.18

I can see that Runtime version is different, but not sure if it matters in this situation.
Also I tried to find a template for issue that is mentioned in contributing guidelines, but couldn't find it. So my apologies in advance.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@michaelDovgal