On 01/22/2009 01:13 AM, Robert Relyea:
Eddy Nigg wrote:
Ah yes, maybe I should...it's in my nature to work around such
problems too many times. Basically if the CA certificates are imported
into the card, than those CAs take preference by NSS (for whatever
ever reason). Meaning, the builtin CA root isn't visible in the cert
manager, but the one from the smart card is. Unfortunately, the trust
bit sets only "web sites" to true. Editing the trust bits helps for
the session, but it's obviously gone after restart. That's correct
with Athena card reader and Aladdin eToken Pro Smart Card using
Aladdin's middle ware and driver.
Please file a bug. Trust is supposed to be independent of where the cert
actually lives in. The current version NSS should be perfectly happy
with the same certificate living in multiple locations.
Done, https://bugzilla.mozilla.org/show_bug.cgi?id=474729
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog: https://blog.startcom.org
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
