Why private key password is required?

Question

Why private key password is required?

Opened this issue 2 years ago · 4 comments

I've tried to add private key without password and I got 500:

File "/src/django-pyas2/pyas2/forms.py", line 98, in clean
    cleaned_data["key_file"], cleaned_data["key_pass"]

Exception Type: KeyError at /en/admin/pyas2/privatekey/add/
Exception Value: 'key_pass'

Could the key_pass be optional?

Thanks!

Answer 1 · 2022-06-02T12:51:10.000Z

It is not optional, I guess I need to raise validation error here.

Answer 2 · 2022-06-02T14:06:44.000Z

@abhishek-ram thanks for reply. I have no private key password in my use case. Could you please explain to me, why the key_pass has to be required?

Answer 3 · 2022-06-02T14:44:57.000Z

For security reasons a password needs to be set for a private key. You should be able to add it like so https://security.stackexchange.com/questions/59136/can-i-add-a-password-to-an-existing-private-key

Answer 4 · 2022-12-01T15:43:26.000Z

For anyone that has a private key without a password and wants to import it, you can conver the key+kert to a p12 file, set a password and import it :)

openssl pkcs12 -export -in certificate.pem -inkey private.key -out pyas2-friendly.p12 -name "To import cert"
``