Hi,
Is there a way to get the info about the pub key in a given cert req?
What is the function for that?
I am writing a patch for certutil so that it can delete an orphan key.
Now, I have been able to modify
some functions so that when we do a "cerutil -K -d db", it lists the
keys along with their CKA_IDs.
And, it is also possible to delete a pvt key based upon CKA_ID. But,
most probably the requirement
is to delete a pvt key based upon a more user friendly index(or a file)
and it could be a cert req file.
If the key is orphan it means the cert is not there in cert.db. But, if
the user has still the Cert Req file,
he should be able to remove the orphaned key. I am able to find all
APIs which can extract members
from a cert but then how to do the same from a CertReq file? That is
the reason for asking this.
And yes, when I say I a Cert req, I mean an ASN Encoded and a signed
one. So, the API I am searching
for should decode,verify a CertReq and then give me the members inside
it. Any suggestion/s?
Thanks
Biswatosh
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
