[Help-gnutls] About Future Plans: Private keys encrypted.

Fran e_agf at yahoo.es
Thu Nov 17 01:22:28 CET 2005

On Mér, 2005-11-16 at 12:33 +0100, Nikos Mavrogiannopoulos wrote:
> Which manpages were problematic?
It is strange for me (for me):
>  unsigned int flags
>                    0 if encrypted or GNUTLS_PKCS_PLAIN if not encrypted.
> Currently only RSA keys can be imported,
>        and flags can only be used to indicate an unencrypted key.

0 != unencrypted key 
but some code have something like this:
>  gnutls_x509_privkey_import_pkcs8(key, &pem, in_cert_format, pass, 0);

> If you use "certtool --generate-privkey -8" you get a pkcs8 encrypted key.
> The only thing you need to do is call gnutls_x509_privkey_export_pkcs8()
> with the flag (say) GNUTLS_PKCS_USE_PKCS12_3DES and an ASCII password.
All works fine.
Was a problem with (configuration parameters + mistake + other errors)
in my test program.

Thanks and


Fco. J.

More information about the Gnutls-help mailing list