[Help-gnutls] About Future Plans: Private keys encrypted.
e_agf at yahoo.es
Thu Nov 17 01:22:28 CET 2005
On Mér, 2005-11-16 at 12:33 +0100, Nikos Mavrogiannopoulos wrote:
> Which manpages were problematic?
It is strange for me (for me):
> unsigned int flags
> 0 if encrypted or GNUTLS_PKCS_PLAIN if not encrypted.
> Currently only RSA keys can be imported,
> and flags can only be used to indicate an unencrypted key.
0 != unencrypted key
but some code have something like this:
> gnutls_x509_privkey_import_pkcs8(key, &pem, in_cert_format, pass, 0);
> If you use "certtool --generate-privkey -8" you get a pkcs8 encrypted key.
> The only thing you need to do is call gnutls_x509_privkey_export_pkcs8()
> with the flag (say) GNUTLS_PKCS_USE_PKCS12_3DES and an ASCII password.
All works fine.
Was a problem with (configuration parameters + mistake + other errors)
in my test program.
More information about the Gnutls-help