On 12/3/2010 10:38 AM, David Stutzman wrote:
In his snippet from PK11KeyGenerator there's the comment: /* special case, construct key by hand. Bug #336587 */
I wanted to add this on Friday, but was waiting for my post to get through moderation.
I wonder if part of the problem here is that on the JSS side, the PBA (Password Based Authentication) key is being created inside of a method named createPBE (Password Based Encryption): http://mxr.mozilla.org/security/source/security/jss/org/mozilla/jss/pkcs11/PK11KeyGenerator.c#268 I'm guessing that's the "special case" alluded to in the comment. So maybe the thing to do here is just add another native method to PK11keyGenerator called createPBA and use code similar to NSS inside pk12e.c?
Dave -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
