Boris Zbarsky schrieb: > I'm not sure what parts of the CERTCertificate are needed for this; I'm > hoping > someone here will know. >
I would propose you always save the full CERTCertificate. I would prefer that we avoid having to implement special code for an after-restore scenario where only a subset of information is availaible. nsIX509Cert expects the underlying CERTCertificate to be complete and valid, and serializing/restoring it based on the DER representation will ensure it. Kai _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
