Hi.
I’m experiencing some problem with
the certtool utility in the 10.3 platform.
The main goal of my message is that I have to develop a portable
(10.3/10.4) application that
generates RSA but also DSA key pairs
So I try to create a DSA key pair with certtool and insert it in my
user keychain (ie login.keychain)
Here is what I obtain:
$ certtool c a k=/Users/services/Library/Keychains/login.keychain
Enter key and certificate label : testDSA
Please specify parameters for the key pair you will generate.
r RSA
d DSA
f FEE
Select key algorithm by letter : d
Valid key sizes for DSA are 512..2048; default is 512
Enter key size in bits or CR for default : <CR>
You have selected algorithm DSA, key size 512 bits.
OK (y/anything) ? y
Enter cert/key usage (s=signing, b=signing AND encrypting): s
…Generating key pair…
***Error creating key pair
: CSP_INVALID_KEY
Error generating keys, aborting
$
Has somebody already met this problem ?
When I specify RSA as the algorithm, certtool runs completely and
creates the key pair and certificate.
Moreover, when I programmatically compute a DSA key pair generation
with the SecKeyCreatePair() call, it results in the same error.
Please, don’t tell me to run the command on Tiger: I know it works !
Instead, the question is:
is DSA key pair generation supported on 10.3 ?
If so, which tool should I use?
Is there some reusable code in Darwinsource for programmatically
meet my needs?
Thanks for answers.
Bertrand.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Apple-cdsa mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/apple-cdsa/email@hidden
This email sent to email@hidden
