blob: f3ea257f2c91f35adf33b7d3036bd49913b4039f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
|
.. _mozilla_projects_nss_tools_nss_tools_certutil-tasks:
NSS Tools certutil-tasks
========================
.. container::
.. rubric:: NSS Security Tools: certutil Tasks
:name: NSS_Security_Tools_certutil_Tasks
| Newsgroup: `mozilla.dev.tech.crypto <news://news.mozilla.org/mozilla.dev.tech.crypto>`__
.. rubric:: Task List
:name: Task_List
#. Better error reporting. Most certutil errors provide no detail. Mistakes with command-line
options just print a usage message.
#. Improve certificate listings. Allow for sorting by name and trust. Sorting by trust will
return CA certs first.
#. Allow listing and lookup of keys by index and nickname.
#. Improve coherence of key and certificate nicknames.
#. Remove keys "stranded" without a certificate (except for the imminent (????) encryption key
for password files).
#. Support importing keys from a file.
#. Improve hardware token support.
#. (bugfix) Some certificate extensions cause certutil to crash.
#. (bugfix) Certificate entries require a serial number; one should be generated automatically if
not provided.
#. (bugfix) Null password is given to new ``key3.db``; should prompt user for an initial
password.
#. (bugfix) Listing provate keys does not work: requires password authentication.
#. (bugfix) Listing certificate extensions has typos and does not provide much information.
|