Subrata Mazumdar wrote, On 2008-02-28 20:55: >>> My motivation is to access the keys/certs from profiles other than >>> current profile of the browser.
>> Ah, you want to configure softoken to use a different set of databases >> rather than, or in addition to, the default. > Yes, what I meant was to access DBs from other browsers as "external > tokens" in addition to the default (which is the internal token) of > current browser . My only requirement is that I should be able configure > the DBs as PKCS#11 module using the "load" button in the "Device > Manager" dialog of Mozilla PSM for security devices. Several caveats. 1) Today, the cert8.db file and key3.db file CANNOT safely be opened by two processes at the same time. If two browsers have the same set of cert8/key3 DB files open at the same time, that spells disaster for those DB files. There's no good way to tell if another process currently has a DB file open, or not. :-/ 2) NSS 3.12 will contain support for a new DB format, cert9.db (?), which will be based on sqlite3, and will be safely sharable by multiple processes. However, use of that new feature will not be automatic. That is, an NSS-based program must (typically) make a few changes to use the new DBs, and the work to integrate those changes with FF has not yet been done (it is still being designed, IINM). 3) The "Load" button is for loading PKCS#11 *modules*. You won't be loading any new modules. You'll be using a new "slot" or "token" in the existing module. So the "load" button will not be the right way to make that happen. Additional UI work must be done to properly integrate such a change into PSM. I think the PSM developer would welcome contributions. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
