On 06/24/2013 02:53 PM, Rodney Simioni wrote:
Comment below.
-Original Message-
From: Rich Megginson [mailto:ri...@stanfordalumni.org]
Sent: Monday, June 24, 2013 4:52 PM
To: mozilla-dev-tech-cry...@lists.mozilla.org
Cc: Rodney Simioni
Subject: Re: error 21 on Red Hat
On 06/24/2013 09
On 06/24/2013 09:47 AM, Rodney Simioni wrote:
Hi,
Ok, I'm getting further, certdb was able to recognize the cert but I'm
not quite there yet.
I still don't have TLS enabled. Does anybody know why I'm getting 'error
21'
TLS: certdb config: configDir='/etc/openldap/cacerts/'
tokenDescripti
On 06/21/2013 07:48 AM, Rodney Simioni wrote:
Comments below.
-Original Message-
From: dev-tech-crypto-bounces+rodney.simioni=verio@lists.mozilla.org
[mailto:dev-tech-crypto-bounces+rodney.simioni=verio.net@lists.mozilla.o
rg] On Behalf Of Robert Relyea
Sent: Thursday, June 20, 2013
On 06/20/2013 05:16 PM, Robert Relyea wrote:
On 06/20/2013 02:56 PM, Rodney Simioni wrote:
I'm trying to setup LDAP/SSL/TLS. Somebody told me that PKCS is a moznss
issue and I should ask this question with you guys and not the openssl
group.
What OS are you running? I does look like you are u
On 01/23/2011 05:56 PM, Ben Bucksch wrote:
I am trying to implement XMPP, in chrome-JS.
XMPP resolves the server hostname using DNS SRV lookups, so if I want to
get the server for "foo.com", I may end up with e.g. "abcdxmpp.foo.com"
as hostname. The user opened the connection to "foo.com", thoug
Wan-Teh Chang wrote:
On Tue, Oct 27, 2009 at 10:23 AM, Rich Megginson
wrote:
VC++ 9.0 now requires either a manifest or Side-by-Side assembly (the vc
redist package) in order for .dlls and .exes to find the VC runtime DLL.
http://support.microsoft.com/default.aspx/kb/326922
I would like to
VC++ 9.0 now requires either a manifest or Side-by-Side assembly (the vc
redist package) in order for .dlls and .exes to find the VC runtime DLL.
http://support.microsoft.com/default.aspx/kb/326922
I would like to build nspr and nss such that I can run tools like
certutil.exe without having to
Spidey wrote:
Thanks Nelson for your reply.
Could not work on this issue as was busy with some other issues & the
machine acted up.
I have set prldap_set_session_option for a timeout of 5 Seconds.
Here is the backtrace that shows the 5 arguments being passed to
PR_Send
#0 0x00478938 in poll (
Nelson B Bolyard wrote:
On 2009-06-19 15:01 PDT, Rich Megginson wrote:
Nelson B Bolyard wrote:
On 2009-06-19 12:48 PDT, Rich Megginson wrote:
Yes. This is an implementation of a PRIOMethods stack. So what I mean
is "this is the function that implements the PR_Recv functionality for
Nelson B Bolyard wrote:
On 2009-06-19 12:48 PDT, Rich Megginson wrote:
Does NSS support non-blocking sockets?
Yes.
I'm running into a problem while using NSS with non-blocking sockets. I
have my own PR_Recv function that does something like this:
Although you called it a &qu
I'm running into a problem while using NSS with non-blocking sockets. I
have my own PR_Recv function that does something like this:
static int PR_CALLBACK
my_PR_Recv(PRFileDesc *fd, void *buf, PRInt32 len, PRIntn flags,
PRIntervalTime timeout)
{
...
rc = my_real_read_function( realfd,
I've been looking at the problem of different libraries/different
clients each with their own private key/cert db in a single process (for
example, the Thunderbird ldap/nss_ldap problem). In this case, the user
may want nss_ldap to keep its certs and keys (including ca certs)
separate from tho
fat.fuck wrote:
On Dec 2, 8:59 pm, "fat.fuck" <[EMAIL PROTECTED]> wrote:
first off: i am but a humble java programmer by trade; not a sysadmin;
nor a network guy. so a lot of nss tool-related stuff is a foreign
language to me. please, help a certutil rookie make sense of the
world?
i'm experim
Howard Chu wrote:
> Michael Ströder wrote:
>> I'd really appreciate if the OpenLDAP client libs could make use of
>> client certs I have in my Mozilla profile.
>
> Don't be so sure; it's not as good as it sounds... Without the new
> shared DB support in NSS, this would very likely corrupt your ce
timeless wrote:
To create a patch, you should always use the "cvs diff -u" command, IMO.
cvs diff -up is better :)
Yes, that is nice to have.
What diff format does the patch attachment/diff showing in bugzilla use?
I usually use cvs diff -u8 and it seems to work just fine. I have
come t
Nelson B wrote:
Rich Megginson wrote:
In the LDAP C SDK code, we call SSL_SetURL with the hostlist argument
which is passed in to ldapssl_connect(). So I suppose the real fix for
the ldap c sdk is to make sure we call SSL_SetURL with a simple
hostname.
Let me suggest that the "rea
Rich Megginson wrote:
Nelson B wrote:
Ulf Weltman wrote:
Hi all. I'm writing some code that prepares compact host:port
addresses for certificate CN checking. This is to handle an
application that keeps a host list like "foo.example.com
192.168.1.1:2389 [fe80::230:6eff:fe4b:703]
Nelson B wrote:
Ulf Weltman wrote:
Hi all. I'm writing some code that prepares compact host:port addresses
for certificate CN checking. This is to handle an application that
keeps a host list like "foo.example.com 192.168.1.1:2389
[fe80::230:6eff:fe4b:703] [fe80::230:6eff:fe4b:703]:3389".
Steve Parkinson wrote:
I've been playing with SWIG a little. It seems too easy!
My comments so far:
1) Private function definitions. SWIG can make wrapper functions for all
functions declared in the header files. But, not all of those end up
being exposed in the .so, (due to nss.def). You re
Nelson B. Bolyard wrote:
Peter Djalaliev wrote:
Hello,
I am trying to upgrade a normal HTTP connection to SSL in the Apache
mod_nss module.
So, You're the source of all those questions I've been getting! ;-)
I don't know if Rob C. announced it, but there is now a mod_nss for
Apache that ca
Heikki Toivonen wrote:
Steve Parkinson wrote:
Also, bear in mind that exposing more of NSS to XPCOM might be a good
thing. We should probably think about what subset of NSS we'd want to
expose.
My understanding is that since Python is becoming a first class language
in Mozilla, you will event
Rich Megginson wrote:
Has anyone used SWIG to create an NSS wrapper for perl, python, or other
languages? I would really, really, really like to use NSS for crypto
in my scripts, but invariably the only supported crypto is openssl. SWIG
could even be used to create a Java wrapper, possibly
Has anyone used SWIG to create an NSS wrapper for perl, python, or other
languages? I would really, really, really like to use NSS for crypto
in my scripts, but invariably the only supported crypto is openssl.
SWIG could even be used to create a Java wrapper, possibly making JSS
support easie
Michael Pratt wrote:
Ok, so I'm on the verge of having this all working. I have my SSL
connection working using the JSSESocketFactory class (and setting the
appropriate system properties so it knows where to find my keystore and
truststore). Now the problem is, I cannot authenticate without a
24 matches
Mail list logo
