[gnutls-dev] unencrypted PKCS#12

Nikos Mavrogiannopoulos nmav at gnutls.org
Tue Oct 19 23:00:05 CEST 2004

On Tuesday 19 October 2004 00:21, Aleix Conchillo Flaque wrote:
> Hi,
Hello Aleix,
> I'm playing around opening some PKCS#12 files and I've found something
> curious. When PKCS#12s are not encrypted:
> - gnutls_pkcs12_bag_decrypt(bag, "") works, but if I pass a NULL I get
>   a segmentation fault.
I'll check it soon (I'm pretty stressed now with other things).
But anyway why do you want to decrypt a bag that is not encrypted?

> - gnutls_x509_privkey_import_pkcs8(key, &key_data, GNUTLS_X509_FMT_DER,
>                                    NULL, 0)
>   here if I pass an empty password "" instead of NULL I get an
>   GNUTLS_E_MPI_SCAN_FAILED error (The scanning of a large integer has
>   failed).
> Which is the correct way to use this? I've make it work just trying,
> but is not specified anywhere. Or may be I missed something.
I'll check it as soon that too. The only example currently for PKCS #12 is the
certtool utility (although it's code is a mess).

> Regards,
> aleix

Nikos Mavrogiannopoulos

More information about the Gnutls-devel mailing list