Hi, Nelson Bolyard schrieb: > Wolfgang Rosenauer wrote: > > It is possible that code that uses NSS in ways not tested by certutil > may encounter bugs not seen with certutil. This MAY be just such a bug. > Please file a bugzilla bug report about this. > >> What I've used to create the shared database is actually the same as in >> the thread "NSS DB migration problem" and something really seems to be >> broken with it. > > That thread seemed to die unresolved, with some questions unanswered > (questions that I asked). So, let me ask you directly,
I'm not the author of that function but as it's OSS: > Are you trying to use NSS_InitWithMerge to create a new cert9.DB > where none existed before? Yes. NSS_InitWithMerge is used regardless of an existing cert9.db (and even cert8.db). The conversion function uses pretty much what is on https://wiki.mozilla.org/NSS_Shared_DB#Type_A mentioned as "simple update". Only if NSS_InitWithMerge fails it does NSS_Initialize instead to create the new db but that didn't happen. > I'm pretty sure that that function has not been tested for that purpose. > Perhaps it needs to detect the case where the "target" DB does not > already exist and handle it differently. As far as I can see https://wiki.mozilla.org/NSS_Shared_DB is unclear about the fact if it can be used to create a db from scratch. Thanks, Wolfgang _______________________________________________ dev-tech-crypto mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-crypto
