David Stutzman wrote, On 2009-02-19 09:39: > I was trying to install a test root certificate in a database and was > getting an error. I then imported a PKCS#12 file that contained, among > others, the root cert and it went in ok. I then tried to modify the > trust using certutil and I received: > certutil: unable to modify trust attributes: Peer's public key is invalid. > > I used modutil to turn off fips mode and was then able to successfully > change the trust. I then turned fips mode back on and all is good in > the world. > > What would cause NSS to throw this error only in FIPS mode?
Dave, I suggest you file a bug and attach the cert to it, along with steps to reproduce. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
