[gnutls-devel] GnuTLS | certtool: unable to decrypt PKCS#8 object in batch mode (#1262)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Thu Aug 5 02:13:53 CEST 2021

Daniel Kahn Gillmor created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1262

[bob.p12.bag3.key](/uploads/ba1edd13ff5b401604b7a82a6dd001a9/bob.p12.bag3.key) is a PEM-encoded PKCS#8 encrypted private key object, protected with a three character ascii password `bob`.

certtool --key-info --password bob < bob.p12.bag3.key

produces another PKCS#8 encrypted private key object to stdout.

but interactively:

certtool --key-info < bob.p12.bag3.key

prompts me for a password.  when i supply the password at the prompt, the output is an *unencrypted* private key, with the usual full `--key-info` details.

I'd like to be able to do that conversion in automated mode, rather than needing to enter the password at the terminal.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1262
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20210805/c22b184e/attachment-0001.html>

More information about the Gnutls-devel mailing list