Legacy algorithms are not supported for PKCS#12 files

Description of the feature:

PKCS#12 files that use one of the below-listed PBES1 algorithms cannot be used by gnutls:

pbeWithMD2AndRC2-CBC (for keys, it works for certificate encryption)
pbeWithMD5AndRC2-CBC
pbeWithSHA1AndRC2-CBC
pbeWithSHAAnd128BitRC2-CBC
pbeWithMD2AndDES-CBC
pbeWithSHA1AndDES-CBC
pbeWithSHAAnd2-KeyTripleDES-CBC
pbeWithSHAAnd40BitRC4

also PBES2 with rc2-cbc does not work

Applications that this feature may be relevant to:

certutil

Is this feature implemented in other libraries (and which)

OpenSSL implements all of them, NSS does implement some.

See https://github.com/redhat-qe-security/keyfile-corpus for example test files

Edited Mar 05, 2019 by Alicja Kario (@mention me if you need reply)