I still don't quite understand what the original problem was, so it's difficult for me to advise you about that.
The original problem Bryan was seeing was that the dialog that prompts the user to allow (or not) UniversalXPConnect priveleges lists "" as the name of the site requesting the priveleges. That string comes nsPrincipal::GetCommonName, if the nsIPrincipal for the page has a certificate.
I just did more tracing back where that string comes from originally, and it looks like it's supposed to be set by nsNSSComponent::VerifySignature (to whatever GetOrganization returns). I'm not sure whether that's happening, and I've filed bug 240628 on the issue and cced you (I hope that's ok).
-Boris _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
