Ok thanks. Now I'd like to dump out the key values: if I use NSS_NoDBInit(), how do I dump out the private key value? I would need to be able to convert from a SECKEYPrivateKey to convert a SECKEYLowPrivateKey, but I can't find a function to do that. I see certutil has a DumpPublicKey and DumpPrivateKey but it uses a function called GetPrivKeyFromNickname() which doen't seem to exist anywhere...Even if it did, how could I get the priv key from a nickname, if I'm using a NSS with NoDB?
Could you help me find a way to dump out key values? -- POC "Ian McGreer" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED]... > Patrick wrote: > > Nelson, > > > > Is the code in > > mozilla\security\nss\tests\pkcs11\netscape\suites\security\pkcs11.c another > > pretty good example of how to gen a DSA key pair? > > > > -- POC > > > > > > That code calls PKCS#11 functions directly. I don't think you want to > do that, unless you want to skip NSS and initialize the softoken yourself. > > If you don't want databases, use NSS_NoDBInit(). certutil can generate > DSA keypairs, seee mozilla/security/nss/cmd/certutil/keystuff.c > > -Ian >
