Hi,
this a message about a discussion on this list on December.
Dr S N Henson wrote:
> Etienne Loupias wrote:
> >
> > Have you experienced this problem ? Could it be a bug of my Netscape version ( I
>use
> > Communicator 4.75 on Win98). Is there a way to access the secret key in Netscape
>key
> > database ?
> >
> > I hope this is not too much OT and that you can tell me what you think of this.
>
> I suspect this is a bug in Netscape's PKCS#11 implementation.
>
> Are you returning the DES3 mechanism in the list of supported
> mechanisms? I believe Netscape will try to use 3DES for private key
> export even if the library doesn't handle it.
Yes, I return the DES3 mechanism in the list of supported mechanisms.
> You might also see if adding the PKCS#12 derivation mechanisms causes it
> to try to derive a key.
I added all the derivation mechnism, but it doesn't help.
Bob Relyea from Netscape has confirmed that this is a bug in the Netscape Security
Library
(in a message in news://news.mozilla.org/netscape.public.mozilla.crypto on 21/12/00).
He believes this bug is fixed in PSM ( early versions of PSM can be installed for
Communicator 4.7 : http://docs.iplanet.com/docs/manuals/psm.html ).
Since I need a solution for Comunicator 4.x, I write a PKCS#12 file directly in the
C_WrapKey function. It is not very nice, but it works...
Thanks for your help,
Etienne
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
