Hi all,
I would like to port the client side of a client-server application from
OpenSSL to NSS, but I've hit a snag:
The client creates a symmetric key, encrypts it with the server's public
key and transmits it to the server. The server, over which I have no
control, expects the key to be encrypted with RSA OAEP.
I have successfully created a symmetric key, imported the server's public
key, and wrapped the symmetric key using:
PK11_PubWrapSymKey(CKM_RSA_PKCS_OAEP,
RSAPublicKey,
UnwrappedKey,
WrappedKey);
But the server rejects the key. After reading over posts to this list and
the code, I believe that RSA OAEP is not yet supported by NSS. Is that
correct?
Also, assuming that I'm correct in thinking that, can anybody suggest a
workaround?
TIA,
Dave
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
