[gnutls-devel] PKCS 11, public key from a private key

Nikos Mavrogiannopoulos n.mavrogiannopoulos at gmail.com
Thu Dec 17 09:06:51 CET 2015


On Sun, Dec 6, 2015 at 10:23 PM, Jan Včelák <jan.vcelak at nic.cz> wrote:
> On 6.12.2015 11:25, Nikos Mavrogiannopoulos wrote:
>> Interesting. As I understand you are referring to the CKA_EC_POINT
>> attribute which does not need to be included in private key objects.
> Exactly.
>> For a fix to make gnutls_pubkey_import_privkey() available with all
>> keys, an alternative is for the import function to reconstruct the
>> public key from the private key. I'll check how feasible is that.
> I don't think this will be possible. The private key material is present
> in the token, so the token would have to do the reconstruction.

Hi Jan,
 I'm still thinking whether gnutls_pubkey_import_privkey() should work
with these keys or we simply return an error. How did you solve that?

regards,
Nikos



More information about the Gnutls-devel mailing list