I'm a real novice in Mozilla's source code and trying to use NSS to sign a string given the following: 1. String to sign 2. Serial number of certificate to sign string with 3. Issuer name of certificate to sign string with
I've done this using Microsoft Crypto API using the following logic: 1. Enumerate through certificates in store 2. If certificate issuer name and serial number matches 3. Use the cert to sign the string It was really easy since there are a lot of documentation on MS Crypto API I'm trying to do something similar if user's certificate is stored in Netscape's cert store. I managed to build NSS, found that SMimeTools and CertUtil has the functionalities I'm looking for, but the problem is there's no documentation or roadmap for using the APIs (would appreciate for any pointers on getting documentation if you know of any). My question is: 1. Give an issuer name and serial no., I suspect the API to get the cert is "CERT_FindCertByIssuerAndSN". One of the params to this API is "CERTIssuerAndSN", how do I create that object to pass into the API? Thanks --DS
