RetroZilla/security/nss/lib/ckfw/nssmkey
roytam1 44b7f056d9 cherry-picked mozilla NSS upstream changes (to rev bad5fd065fa1, which is on par with 3.20):
bug1001332, 56b691c003ad, bug1086145, bug1054069, bug1155922, bug991783, bug1125025, bug1162521, bug1162644, bug1132941, bug1164364, bug1166205, bug1166163, bug1166515, bug1138554, bug1167046, bug1167043, bug1169451, bug1172128, bug1170322, bug102794, bug1128184, bug557830, bug1174648, bug1180244, bug1177784, bug1173413, bug1169174, bug1084669, bug951455, bug1183395, bug1177430, bug1183827, bug1160139, bug1154106, bug1142209, bug1185033, bug1193467, bug1182667(with sha512 changes backed out, which breaks VC6 compilation), bug1158489, bug337796
2018-07-14 21:22:32 +08:00
..
ckmk.h NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
ckmkver.c cherry-picked mozilla NSS upstream changes (to rev bad5fd065fa1, which is on par with 3.20): 2018-07-14 21:22:32 +08:00
config.mk NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
Makefile NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
manchor.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
manifest.mn NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
mconstants.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
mfind.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
minst.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
mobject.c cherry-picked mozilla NSS upstream changes (to rev 82de44ead36f, which is on par with 3.18): 2018-07-14 21:22:30 +08:00
mrsa.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
msession.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
mslot.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
mtoken.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
nssmkey.def NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
nssmkey.h NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00
README first commit 2015-10-20 23:03:22 -04:00
staticobj.c NSS: update to 3.15.5 2018-05-19 22:01:21 +08:00

This Cryptoki module provides acces to certs and keys stored in
Macintosh key Ring.

- It does not yet export PKCS #12 keys. To get this to work should be 
  implemented using exporting the key object in PKCS #8 wrapped format.
  PSM work needs to happen before this can be completed.
- It does not import or export CA Root trust from the mac keychain.
- It does not handle S/MIME objects (pkcs #7 in mac keychain terms?).
- The AuthRoots don't show up on the default list.
- Only RSA keys are supported currently.

There are a number of things that have not been tested that other PKCS #11
apps may need:
- reading Modulus and Public Exponents from private keys and public keys.
- storing public keys.
- setting attributes other than CKA_ID and CKA_LABEL.

Other TODOs:
- Check for and plug memory leaks.
- Need to map mac errors into something more intellegible than 
  CKR_GENERAL_ERROR.