[Users] Gpgsm failure to import Certtool generated PKCS #12 structures.
ENI
info at endeavor-networks.com
Tue Sep 16 20:37:01 CEST 2014
We used Certtool to generate private keys, X.509 certificates, and DER
encoded PKCS #12 structures (incl. cert and private key).
The DER encoded PKCS #12 structures were successfully imported into
Thunderbird's Certificate Manager without issue.
Gpgsm failed to import these structures.
We then used Certtool to generated "PEM" encoded PKCS #12 structures
(incl. cert and private key).
Gpgsm failed to import these structures.
prompt >gpgsm --import x509-postmaster.p12
... produced the following output:
gpgsm: gpg-protect-tool: encryptedData error at
"bag.encryptedData.keyinfo", offset 79
gpgsm: gpg-protect-tool: error at "bag.encryptedData", offset 49
gpgsm: gpg-protect-tool: error parsing or decrypting the PKCS-12 file
gpgsm: error running `E:\Program Files\GNU\Claws
Mail\gpg-protect-tool.exe': exit status 2
gpgsm: total number processed: 0
In order to proceed with our trials, we chose to generate keys and
certificate signing requests (CSR) with Gpgsm; process the CSRs with
Certtool, and import the certs with Gpgsm.
Anyone have any insights as to why Gpgsm would fail to import the PKCS
#12 structures generated by Certtool, and produce the error output
documented above?
Regards,
ENI
More information about the Users
mailing list