G'day, I'm just getting started with a NSS backend for the Qt Cryptographic Architecture (see: http://websvn.kde.org/trunk/kdesupport/qca/plugins/qca-nss/qca-nss.cpp?view=markup for the code).
I am having success with basic crypto ops (cipher, hashing, hmac), but things
got a bit messier when I started with RSA key generation. For the basic ops,
I'm using NSS_NoDB_Init(".");
However PK11_GenerateKeyPair() doesn't appear to work with this. It does work
with NSS_InitReadWrite(".") though.
That isn't very satisfactory though, because I don't want my keys appearing in
a on-disk database (because I don't really have any way to protect them, and
because the behaviour may or may not be suitable for a given application.
The desired behaviour is to have everything only last for the duration of the
application run. I'm happy to maintain a per-session database, as long as it
is in memory. Is there any way to do this?
If not, I'm considering trying to use temporary files, assuming I can use some
of randomly generated per-session passphrase to protect them.
Brad
pgpAVTsAPqgxN.pgp
Description: PGP signature
_______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
