[Pki-devel] [PATCH] pki-0178, jss-0000..0002 - PKCS #12 key bag AES encryption
Christina Fu
cfu at redhat.com
Thu Apr 6 22:45:55 UTC 2017
Hi Fraser,
Could you please do the following first?
1. file a Mozilla bugzilla bug for this against Product JSS Release
4.4.1, then assign to yourself:
https://bugzilla.mozilla.org/
2. After making sure your patch compiles well with the 4.4.1 base,
attach the patch to that ticket, and mark reviewers
thanks!
Christina
On 04/04/2017 02:56 AM, Fraser Tweedale wrote:
> Hi team,
>
> Please review attached patches for JSS and Dogtag that:
>
> - add some new EncryptedPrivateKeyInfo export and import functions
> to JSS
>
> - update Dogtag's `pki pkcs12' command to use the new functions to
> achieve AES encryption of the key bags, with wrapping/unwrapping
> occurring on the token.
>
> PKCS #12 files produced by current releases continue to import
> properly (of course, this is an important test vector).
>
> These patches do not address the PKCS #12 KRA recovery export; This
> is my next task and separate patches will be produced.
>
> Thanks,
> Fraser
More information about the Pki-devel
mailing list