PKCS 12 support questions

[Werner Koch]

On Sun, 19 Jan 2014 01:47, dbaryshkov at gmail.com said:

> 1) Is there a reason, why minip12 is so limited on supported features?

Because pkcs#12 is an entirely broken design and I did this only on
customer request for migrating existisng keys.

> 2) Why is it implemented in gnupg itself - i.e. not in libksba? Would
> it benefitable to push
> at least parts of ASN.1 parsing to libksba?

Please keep that extra insane data format out of Libksba.  pkcs#12 is
plain horror.

Do you really need it?  Isn't X.509 dead anyway?


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.