Writing keys from p12 encrypted with legacy encryption

[msetina]

I want to write keys and cert from an old p12 file. pkcs15-init returns:
error:0308010C:digital envelope routines::unsupported
Using openssl, I get a better description of the problem. It seams that it is encrypted in a depricated encryption. openssl indicates it needs to be used with -legacy argument. And it works.
Is there an equal option for pkcs15-init?

[msetina]

The encryption is RC2-40-CBC

[Jakuje]

I think you would have to load the legacy provider for openssl. Then the "cipher" should be available, but the RC2 is really a joke and I do not think this is something we want to support.

We load the legacy provider for some uses already:

OpenSC/src/libopensc/ctx.c

Line 838 in a94af7f

static int sc_openssl3_init(sc_context_t *ctx)

So it might be enough just to use the right library context for the operation in the pkcs15-init

[msetina]

Thank you. I hope that when I collect the new version of p12, I do not get the same packaging.