On Mon, Aug 03, 2015 at 12:25:31AM -0700, Marcel Holtmann wrote: > > RSA Private Key is n + e + d (including 6 other fields). RSA Public Key is n + e (no other fields). > > So for RSA you would make setkey to take RSA Private Key and setpubkey to take RSA Public Key. Meaning you only have to use one of them since if you have the private key, you always have the public key. > > This real difference here is that you can provide the key in two different key formats. As explained RSA uses two different format. I don't have a problem with a setpubkey/setprivkey split interface. However, I'm totally against importing MPI keys which is just silly. The BER-encoded keys are just raw integers. Most of the hardware out there take raw integers. So it makes no sense to have our interface take MPIs instead of raw integers, as this would mean converting into MPIs and then straight back into raw integers for hardware devices. Cheers, -- Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html