Hi all,
I have the following situation:
We have developed in the past a piece of software that embeds a quite
old version of gecko (from firefox 2.x). It accesses a website over SSL.
Now that site changes its SSL certificate to one that has a (relatively
new) CA certificate, which is not recognized by the old gecko. Needless
to say, SSL links cannot be loaded anymore. I found out that the CA
certificates in NSS 3.1 and above are buit in nssckbi.dll (the version
of gecko that we have here is with NSS 3.11.4. I tried replacing
nssckbi.dll with one from a recent version of Firefox that can open the
above mentioned SSL site. But there is no change, SSL still does not
work. Is it possible to replace the CA certificates by just
mechanically replacing the nssckbi.dll module?
I found a guide in Mozilla LXR
(http://mxr.mozilla.org/mozilla/source/security/nss/lib/ckfw/builtins/README#39)
explaining how to add certificates to nssckbi.dll by recompiling it, but
I would like to avoid recompiling it. I just need a more recent version
which is readily available in recent versions of Firefox. So is it possible?
Thanks in advance
Alex
_______________________________________________
dev-embedding mailing list
dev-embedding@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-embedding
