On 26. 10. 2010 10:43, Jean-Marc Desperrier wrote:
Matej Kurpel wrote:
In the Type field for S:, O:, OU: and CN: I always provided 0x0c which
is utf-8 string, but in the certificate there was 0x13 - printable
string. After I changed it - voila, it's working in Thunderbird, and
certutil doesn't crash anymore.
It sounds like a serious bug. Could you open it in bugzilla, with NSS
tools as the component ?
Just to recap: it was my fault that I provided the wrong Type fields -
other ones than those that were physically in the certificate. In the
CKA_VALUE I provided all certificate bytes and in CKA_ISSUER and
CKA_SUBJECT I provided my own DER-encoded values with the wrong Type
fields. However, how does a printable string differ from utf8string (and
other strings, particularly ia5string) when there are no non-ascii
characters? Do you think it's a bug in NSS...?
M. Kurpel
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto