Thanks to Wan-Teh and Nelson for the help! I've updated http://kegel.com/cert-import-demo.cc to use CERT_DecodeCertFromPackage(), which does everything I was trying to do with NSSBase64_DecodeBuffer() and CERT_ImportCerts(), and I also added a call to CERT_ChangeCertTrust(), which I think is needed to let the cert be used as a root cert.
While doing this, I noticed that nss does not use const on interfaces everywhere one would expect it. In particular, CERT_DecodeCertFromPackage and CERT_DecodeTrustString both take char * where they should probably take const char *. What's the procedure for fixing minor defects like that? I'll now take what I did in this little demo and try it in a real app to see if I'm missing anything. - Dan _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
