pk12util fails to import EC key

NEW
Unassigned

Status

NSS
Tools
P1
normal
2 years ago
2 years ago

People

(Reporter: fkiefer, Unassigned)

Tracking

3.25

Firefox Tracking Flags

(Not tracked)

Details

We got this on dev-tech-crypto

Steps to reproduce:
# Create an empty NSS db
mkdir nss
openssl rand -base64 -out nss/pw 21
certutil -d nss -f nss/pw -N
# Generate an EC key/cert
openssl req -x509 -newkey ec -pkeyopt ec_paramgen_curve:secp521r1 -keyout
key.pem -out cert.pem -days 3650 -nodes -subj "/CN=Test CA"
# Export to pkcs12 format
openssl pkcs12 -export -in cert.pem -inkey key.pem -out cert.p12 -name Test
# Import to nss db
pk12util -i cert.p12 -d nss -k nss/pw
# pk12util reports error
You need to log in before you can comment on or make changes to this bug.