8196584: TLS 1.3 Implementation
Reviewed-by: ascarpino, coffeys, dfuchs, jjiang, jnimeh, mullan, rhalade, ssahoo, valeriep, weijun, wetmore, xuelei
Contributed-by: Adam Petcher <adam.petcher@oracle.com>, Amanda Jiang <amanda.jiang@oracle.com>, Anthony Scarpino <anthony.scarpino@oracle.com>, Bradford Wetmore <bradford.wetmore@oracle.com>, Jamil Nimeh <jamil.j.nimeh@oracle.com>, John Jiang <sha.jiang@oracle.com>, Rajan Halade <rajan.halade@oracle.com>, Sibabrata Sahoo <sibabrata.sahoo@oracle.com>, Valerie Peng <valerie.peng@oracle.com>, Weijun Wang <weijun.wang@oracle.com>, Xuelei Fan <xuelei.fan@oracle.com>
name = nss
slot = 2
#password = test12
library = ${nss.lib}
nssArgs = "configdir='.' certPrefix='' keyPrefix='' secmod='secmod.db'"
#forceLogin = true
attributes(*,CKO_PRIVATE_KEY,*) = {
CKA_TOKEN = true
}
attributes(import,CKO_PRIVATE_KEY,*) = {
CKA_SENSITIVE = true
CKA_EXTRACTABLE = false
}
attributes(*,CKO_PRIVATE_KEY,CKK_RSA) = {
CKA_SENSITIVE = true
CKA_EXTRACTABLE = false
# CKA_DECRYPT = true
CKA_SIGN = true
# CKA_SIGN_RECOVER = true
# CKA_UNWRAP = true
}
attributes(*,CKO_SECRET_KEY,*) = {
CKA_TOKEN = false
CKA_SENSITIVE = true
CKA_EXTRACTABLE = false
CKA_ENCRYPT = true
CKA_DECRYPT = true
# CKA_WRAP = true
# CKA_UNWRAP = true
}