[gnutls-devel] GnuTLS | certtool: ensure that PKCS#8 file does not contain key description (!1076)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Sat Sep 28 13:09:07 CEST 2019




Dmitry Eremin-Solenikov started a new discussion on src/certtool.c: https://gitlab.com/gnutls/gnutls/merge_requests/1076#note_223408639

>  	cinfo.outcert_format = outcert_format;
>  	cinfo.outtext = ENABLED_OPT(TEXT) && outcert_format == GNUTLS_X509_FMT_PEM;
>  
> +	if (cinfo.pkcs8 && cinfo.outtext)

What about checking for `cinfo.password` here rather than `cinfo.pkcs8`? There are valid usecases when a user will output PKCS#8 key without encryption.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/1076#note_223408639
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190928/fca0826f/attachment.html>


More information about the Gnutls-devel mailing list