Hi!
You guys have been very helpful with my NSS questions :) Mind if I ask a
couple more?
1. Is it possible to import a CRL during runtime?
I.e:
- a process has NSS initialized and is using NSS db.
- a user then runs crlutil and imports a CRL (this has worked for me,
btw). crlutil -L lists CRL as imported
Would the original process be able to see this new CRL and its effects
on certificates without reinitializing?
2. SEC_ERROR_BAD_DER error
I've taken the code from crlutil utility and massaged it to fit into our
application. All it does, is it opens the CRL file in DER format and
imports it using PK11_ImportCRL.
I've generated a CRL using crlutil and reimported it back into db using
CRL. That worked fine. However, the same call with the same decode and
import options results in a SEC_ERROR_BAD_DER error in a recursive call
to DecodeItem when I run it from within our application.
A little comment says that:
/* a required component is missing. abort */
Is there anything extra that needs to be set that I missed?
Thanks a lot.
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
