As a sequel to the earlier mail about the way to extract infos from a
Cert Req file,
I have this to discuss.
As I understand, CertReq is a PKCS 10 structure and so the min. members
would be
1)Name and 2)SubjectPublicKeyInfo ,at least.
Now, do we need to identify an orphan key in key.db on the basis of one
of these?
I mean, in the case when we want to delete an orphan key(in an
enhancement of
the present certutil).
But, suppose we start with pub key, do we match all components? I mean the
modulus, the exponent and all?
With name, it need not be unique.
As I mentioned earlier, searching based on CKA_ID is possible and my patch
will list the keys based on CKA_IDs and then identify and delete them.
But, here we are talking of CertReq. We need that, is not it?
Thanks
Biswatosh
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
