[xmlsec] nss updates
Tej Arora
tejbiz@aol.com
Sat, 26 Jul 2003 16:19:23 -0700
Aleksey Sanin wrote:
>
> >I just took a look at the tests. All of these tests
> >are sourcing an RSA key components from an xml file,
> >including the PrivateExponent.
> >
> >
> I am not sure this is the problem. When we are doing decryption
> we get the private key from a pkcs12 file. For encryption, we get
> public key from xml file.
>
> Aleksey
>
01-phaos-xmlenc-3/enc-element-3des-kt-rsa1_5
[1] Decrypt existing document Error
[2] Encrypt document Fail
[3] Decrypt new document Error
[1] is failing because the test is doing decryption -
it is decrypting the EncryptedKey using the rsa private
key - which is read from xml. This produces a symmetric key,
which is then used for decrypting the EncryptedData.
For [1], we should read the private key from pkcs12 file.
[2] is failing because NSS refuses to do PADDING for RSA
encryption :(. I am not able to find any way to specify
padding to NSS. I'll check with the NSS team.
[3] is failing because [2] did not produce a file to be
decrypted.
Will keep you posted.
thanks,
-Tej