I'm trying to figure out a different behavior I'm seeing today vs. NSS I
was using about a year ago.
Basically I have a code signing cert that contains a complete chain and
my memory of importing a year ago (and looking at the DB files that I
have generated from when I did that work), it has a
Appreciate the detailed explanation.
Unfortunately I'm getting a segmentation fault on the export of the
test.pem to my new pfx file...
Very strange...
Mike
On 7/9/09 6:38 AM, David Stutzman wrote:
Michael Kaply wrote:
I'm importing a code signing cert into my database using pk1
I'm importing a code signing cert into my database using pk12util, but
it gets assigned a random alias:
e33eb463-ddba-4895-9469-bfdd01c71fe2
Is there a way via the command line utilities to rename that to a more
human name?
I'm sure I did this in the past, but I can't find anything in the do
Some more test info.
I put everything (dylibs, executables) into usr/local/bin
certutil works
pk12util works (although I get the extra thawte that we talked about
earlier)
signtool fails with:
signtool: function failed: Failure to load dynamic library.
Unknown error: -2804
if I move a
OK, so now I'm really confused. I've done some testing and I am getting
predictable but very confusing results.
I've figured out when the extra thawte cert shows up in my DB and screws
things up.
Note this is all with NSS 3.12
I built NSS 3.12 opt.
Then I put the dylibs and the bin for certut
Wan-Teh Chang wrote:
n/NSS_reference/Building_and_installing_NSS
>
> For Mac OS X, copy all the *.dylib and *.chk files from
> mozilla/dist/Darwin...OBJ/lib to the installation directory.
> Then copy the command-line tools you want from
> mozilla/dist/Darwin...OBJ/bin to the installation directory
Kyle Hamilton wrote:
> http://www.darwinports.com/ -- the version they claim is 3.11.9.
>
They actually download, build and install the real thing, but they make
some changes.
Here are their makefile changes:
http://svn.macports.org/repository/macports/trunk/dports/net/nss/files/patch-Darwin.m
OK, so basically it's the darwin ports version of NSS 11.9 that is
causing the problem.
If I build it myself everything is great.
What a waste of two hours yesterday.
Anyone have a script that shows how NSS/NSPR should be installed on Mac?
Mike
___
d
Nelson B Bolyard wrote:
> Michael Kaply wrote:
>> For the record, I just checked my Windows machine (where all this works)
>>
>> It's NSS 3.11
>>
>> The extra "thawte" is not in the database
>>
>> c1dfd405-9dc0-4b7c-8e98-7b2772a81922
Julien R Pierre - Sun Microsystems wrote:
> Mike,
>
> Michael Kaply wrote:
>> For the record, everything works fine with an NSS 3.12 that I built on
>> my machine.
>>
>> So I don't know if it is an NSS 3.11 problem (which might be the case
>> since
For the record, I just checked my Windows machine (where all this works)
It's NSS 3.11
The extra "thawte" is not in the database
c1dfd405-9dc0-4b7c-8e98-7b2772a81922 u,u,u
Thawte Code Signing CA - Thawte Consulting ccc,,c
I used exactly the same PFX file
Nelson B Bolyard wrote:
> Michael Kaply wrote:
>> Nelson B Bolyard wrote:
>
>>> what does
>>> certutil -d ~ -L
>>> output?
>> c1dfd405-9dc0-4b7c-8e98-7b2772a81922 u,u,u
>> Thawte Code Signing CA -
Nelson B Bolyard wrote:
> Michael Kaply wrote:
>> Wan-Teh Chang wrote:>
>>> Please provide the signtool command line you used, and the
>>> content of the relevant directories.
>>>
>>> "An I/O error occurred during security authorization"
With NSS 3.12 it looks like this after import (and works)
c1dfd405-9dc0-4b7c-8e98-7b2772a81922 u,u,u
Thawte Code Signing CA - Thawte Consulting cc,,
___
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.or
For the record, everything works fine with an NSS 3.12 that I built on
my machine.
So I don't know if it is an NSS 3.11 problem (which might be the case
since other people have reported it) or a problem with darwin ports
(which I doubt)
Mike Kaply
__
Wan-Teh Chang wrote:>
> Please provide the signtool command line you used, and the
> content of the relevant directories.
>
> "An I/O error occurred during security authorization" is
> SEC_ERROR_IO. This error often has nothing to do
> with I/O. SEC_ERROR_IO is reported when
> libsoftokn3.dylib
I'm having a problem signing my Firefox extension on Mac OS X. The error
I get is:
signtool: function failed: An I/O error occurred during security
authorization.
I built NSS and NSPR myself using Darwin Ports
sudo port install nspr (4.7_1)
sudo port install nss (3.11.9_0)
I have had no
17 matches
Mail list logo