You don't need to know the format of the registry entries: you can use
CryptoAPI to access them. It should be possible to add a certificate to
a system store ("MY" probably) and set its properties to point to a key
on the relevant CSP.
Yes, I think it will work. Yesterday I saw some functions for it. It means,
I will need import
certificate by my own code.
I haven't been able to find any info about the PRIVATEKEYBLOB format for
a DSA/DSS key though there is some documentation in CryptGenKey() and
CryptSetKeyParam() relating to DSS/DSA keys.
You missed something, all blobs for DSA are described in MSDN.
Try this: http://msdn.microsoft.com/library/psdk/crypto/cryptoref_11pv.htm,
there are described
both types of blobs - private and public.
I can't find any usable info about creating DSA/DSS keys with Xenroll
either: there's apparently no way to supply the parameters. It may
however be possible to use an existing keyset though and handle things
that way.
Sorry, I do not known Xenroll. However, if keyset exists (and you can create
new keys through
CryptGenKey()), then you can export it through CSP handle.
Martin
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
