Andreas Kretschmer comments

Results 4 comments of


                                            Andreas Kretschmer

dgst command should use provider-keymgmt functions for dealing with private keys

As far as I understand https://github.com/openssl/openssl/blob/master/providers/implementations/storemgmt/winstore_store.c , winstore deals with real certificates and not with any type of key? So in any case I have to provide the byte sequence...

`OSSL_STORE` ignores certs in some PKCS#12 structures

Is there a chance to get the fix in the next release?

DefaultDigestAlgorithmIdentifierFinder throws NPE for Composite Sigs

Sorry, my code was not complete. This snippet triggers the NPE: ``` package com.siemens.pki.bctest; import org.bouncycastle.asn1.x509.AlgorithmIdentifier; import org.bouncycastle.operator.DefaultDigestAlgorithmIdentifierFinder; import org.bouncycastle.operator.DigestAlgorithmIdentifierFinder; public class FinderTest { private static final DigestAlgorithmIdentifierFinder DIG_ALG_FINDER =...

DefaultDigestAlgorithmIdentifierFinder throws NPE for Composite Sigs

Hello @roy-basmacier, I have to deal with certHash generation in CMP cert confirmations, see https://www.ietf.org/archive/id/draft-ietf-lamps-rfc4210bis-12.html#section-5.3.18 . So if a certificate signature algorithm does not specify or enforce a specific hash...