I've been hitting a strange error when trying to use NSS tools with
the certificates databases in Mozilla (mainly XULRunner, but I got the
same result in Firefox).
I have created a self-signed certificate and loaded it into my XUL
app. When I go into into my profile directory, I am able to view it
using signtool. It gives the following output :
Object signing certificates
---------------------------------------
Common Name - Organization
Issued by: Common Name - Organization (Common Name)
Expires: Fri Sep 14, 2007
---------------------------------------
For a list including CA's, use "signtool -L"
Which is correct. However, when I try to sign a directory. I get this
following error :
Generating test/META-INF/manifest.mf file..
Generating zigbert.sf file..
signtool: the cert "testcert" does not exist in the database: security
library: bad database.
the tree "test" was NOT SUCCESSFULLY SIGNED
It dies when creating zigbert.rsa
Now, if I try the exact same thing using a certificate database
created by certutil, it works just as expected and creates the .rsa
file.
More interesting is that if I copy the NSS created files (cert8.db/
secmod.db/key3.db) into my XUL app, XULRunner will fail to load it.
I tried this in firefox and got the same error.
So does anyone know why the NSS/Mozilla dbs are, I guess,
incompatible? It seems very strange that I am able to list the
certificates, but get a "bad database" error when I try to use it.
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
