Pavel Pavlov wrote:
I am trying to modify the pk12util tool add a new option to not export
the full certificate chain. While following this I found that
SEC_PKCS12AddCertAndKey invokes SEC_PKCS12AddCert by always passing TRUE
for includeCertChain. I want this option to be exposed as a parameter to
the SEC_PKCS12AddCertAndKey function.
As I think this will be usefull to others, will you consider such change
in the upcoming 3.11 release?
I also made some fixes and enhancements to the other NSS Tools
(certutil, crlutil) that I would like to submit for consideration for
the next release. Whom can I send these patches?
Hi Pavel,
We use Bugzilla to manage feature requests and patch submission.
First, go to https://bugzilla.mozilla.org/createaccount.cgi
to get a Bugzilla account.
Then, go to https://bugzilla.mozilla.org/enter_bug.cgi?full=1
to report bugs. Select the "NSS" product under "Components".
For the feature request (exposing includeCertChain as a parameter
to SEC_PKCS12AddCertAndKey), select "enhancement" as "Severity".
(By the way, because NSS maintains backward compatibility, we
can't change the function prototype of SEC_PKCS12AddCertAndKey and
will need to add a new version of SEC_PKCS12AddCertAndKey.)
To attach a patch, you need to first open a bug, and then go
back to the bug report to attach the patch.
Wan-Teh
_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto
