Re: [Pki-devel] [PATCH] pki-0178, jss-0000..0002 - PKCS #12 key bag AES encryption

Thursday, 6 April 2017

Hi Fraser,

Could you please do the following first?

1.  file a Mozilla bugzilla bug for this against Product JSS Release 
4.4.1, then assign to yourself:
https://bugzilla.mozilla.org/
2. After making sure your patch compiles well with the 4.4.1 base, 
attach the patch to that ticket, and mark reviewers

thanks!

Christina

On 04/04/2017 02:56 AM, Fraser Tweedale wrote:
...
 Hi team,

 Please review attached patches for JSS and Dogtag that:

 - add some new EncryptedPrivateKeyInfo export and import functions
    to JSS

 - update Dogtag's `pki pkcs12' command to use the new functions to
    achieve AES encryption of the key bags, with wrapping/unwrapping
    occurring on the token.

 PKCS #12 files produced by current releases continue to import
 properly (of course, this is an important test vector).

 These patches do not address the PKCS #12 KRA recovery export; This
 is my next task and separate patches will be produced.

 Thanks,
 Fraser 

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

Re: [Pki-devel] [PATCH] pki-0178, jss-0000..0002 - PKCS #12 key bag AES encryption