[Pki-devel] [PATCH] pki-0178, jss-0000..0002 - PKCS #12 key bag AES encryption
Elio Maldonado
emaldona at redhat.com
Thu Apr 6 22:56:31 UTC 2017
On 4/6/17 3:45 PM, Christina Fu wrote:
> Hi Fraser,
>
> Could you please do the following first?
>
> 1. file a Mozilla bugzilla bug for this against Product JSS Release
> 4.4.1, then assign to yourself:
> https://bugzilla.mozilla.org/
> 2. After making sure your patch compiles well with the 4.4.1 base,
> attach the patch to that ticket, and mark reviewers
Fraser,
You know this already know it but just in case.
Mozilla JSS upstream build instructions are at
https://hg.mozilla.org/projects/jss/file/default/README
Elio
>
> thanks!
>
> Christina
>
>
> On 04/04/2017 02:56 AM, Fraser Tweedale wrote:
>> Hi team,
>>
>> Please review attached patches for JSS and Dogtag that:
>>
>> - add some new EncryptedPrivateKeyInfo export and import functions
>> to JSS
>>
>> - update Dogtag's `pki pkcs12' command to use the new functions to
>> achieve AES encryption of the key bags, with wrapping/unwrapping
>> occurring on the token.
>>
>> PKCS #12 files produced by current releases continue to import
>> properly (of course, this is an important test vector).
>>
>> These patches do not address the PKCS #12 KRA recovery export; This
>> is my next task and separate patches will be produced.
>>
>> Thanks,
>> Fraser
>
> _______________________________________________
> Pki-devel mailing list
> Pki-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/pki-devel
More information about the Pki-devel
mailing list