Julien Pierre,
Thanks for your answer.
I try the way which you advise to me,and it works well.I use
PK11_PubWrapSymKey to encrypt a dummy symmetric key which contain the data I
want to encrypt.And use PK11_PubUnwrapSymKey to decrypt it.The wrapped key
can be directly decrypt by use PKCS11 C_Decrypt interface.The decrypt result
and PK11_PubUnwrapSymKey result are same.
I have another question.If I want to use my hardware key only for SSL
server-auth or SSL client-auth,and maybe the hardware key only support RSA
algorithm,how can I do it?Should I modify the NSS source code to do it?Where
I can find an example to do this.
Thank you again.
LiuPeng
_______________________________________________
mozilla-crypto mailing list
[EMAIL PROTECTED]
http://mail.mozilla.org/listinfo/mozilla-crypto
