Re: CA serial number clarification. Re: Mozilla's use of AIA caIssuers URIs

Anders Rundgren wrote: [...]. That Root is actually signed by the same key and having the same issuer as Sub does not put it in the same level as Sub since Root is selfsigned. I think you should rethink about the meaning of *self*-signed. The issuer of Root *is* Root, so Root and Sub *do*

Re: CA serial number clarification. Re: Mozilla's use of AIA caIssuers URIs

Jean-Marc Desperrier wrote: Anders Rundgren wrote: [...]. That Root is actually signed by the same key and having the same issuer as Sub does not put it in the same level as Sub since Root is selfsigned. I think you should rethink about the meaning of *self*-signed. The issuer of Root *is*

question about gathering data in SSL

Hello, I have a question about what happens when the first SSL handshake on a SSL connection tries to gather data from a socket that would block (e.g. there is no data tobe read yet). I am using the SSL3 implementation on a Linux platform. So, in Do1stHandshake(), the next handshake function is

Re: Updated build instructions / release notes

Hello, I don't know about the release notes (I suspect these are the newest ones), but here are some build instructions that should work. They haven't really changed as far as I know: 1) Download the NSS and NSPR source tarballs from their respective release dirs:

Re: question about gathering data in SSL

Peter Djalaliev wrote: I have a question about what happens when the first SSL handshake on a SSL connection tries to gather data from a socket that would block (e.g. there is no data tobe read yet). Peter, Rather than answer your questions about the functions in the code, one by one, I'm

Re: RFC2511 or PKCS10 and SPKAC

Richard Levenberg wrote: Neither RFC2511 or PKCS10 (Certificate Request specifications) mention the use of SPKAC. I'm pretty sure that SPKAC doesn't fit within PKCS10 but I've only cursorily looked at RFC2511 so I'm not positive that a SPKAC couldn't be hammered in there somewhere. I know

Re: Updated build instructions / release notes

Peter Djalaliev wrote: After everything compiles, you can find in the NSS source tree: NSS include files: /mozilla/dist/public/nss and /mozilla/dist/public/dbm NSPR include files: /mozilla/dist/_.OBJ/include Don't use the files in /mozilla/dist/public/dbm. dbm is now an internal

Re: CA serial number clarification. Re: Mozilla's use of AIA caIssuers URIs

Jean-Marc Desperrier wrote: [...]. That Root is actually signed by the same key and having the same issuer as Sub does not put it in the same level as Sub since Root is selfsigned. I think you should rethink about the meaning of *self*-signed. I don't claim to be the world's biggest expert on