On 04/04/2012 05:57 PM, Wan-Teh Chang wrote:
On Wed, Apr 4, 2012 at 4:39 PM, Brian Smith<bsm...@mozilla.com> wrote:
I don't know what platform JV is on, but I know on Mac OS X,
all the internal symbols in FreeBL and maybe other libraries
are exported. This is how the Firefox Sync developers got
so far in developing their JavaScript implementation of J-PAKE
based on FreeBL's internal math library; they did all their
development and testing on Mac OS X and when they were done,
they were surprised to find they were using functions that you
can't even reference on Windows (and Linux?).
I am not sure if there is something we can do about this problem
for Mac OS X.
The NSS makefiles should restrict the symbols exported from
the dynamic shared libraries on Mac OS X:
http://bonsai.mozilla.org/cvsblame.cgi?file=mozilla/security/coreconf/rules.mk&rev=1.83&mark=316,343-347#316
Perhaps that makefile rule is not working as intended? Or
perhaps Firefox Sync developers were using the static
library libfreebl.a (which loads libfreebl3.dylib at run time)
on Mac OS X?
Why are they linking with Freebl anyway? It's intended to be a private
interface for softoken. It's a very good way to find yourself backed
into a corner.
bob
Wan-Teh
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
