Secure sockets - sql method issue

To:	PCP Mailing List <pcp@xxxxxxxxxxx>
Subject:	Secure sockets - sql method issue
From:	Ken McDonell <kenj@xxxxxxxxxxxxxxxx>
Date:	Tue, 16 Apr 2013 17:21:21 +1000
Delivered-to:	pcp@xxxxxxxxxxx
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130329 Thunderbird/17.0.5

I am continuing my battle with secure sockets ... rather than starting one 
enormous mail thread, I am going to start several mail threads, one per issue 
I've found.

This is the first one.

Our code assumes the sql method is available for managing certificates (hope 
I've got the terminology wrong).

On at least one platform I have the nss/nspr packages installed, but no sql 
method as the following shows:

root@vm04:~# rm -rf /etc/pki; mkdir -p -m 0755 /etc/pki/nssdb
root@vm04:~# certutil -d sql:/etc/pki/nssdb -N -f /tmp/empty
certutil: function failed: security library: bad database.
root@vm04:~# certutil -d /etc/pki/nssdb -N -f /tmp/empty

This is on CentOS 5.9.

I believe we need to do one or more of the following: (a) support methods other 
than sql, or (b) provide tighter prerequisites to force the necessary pieces to 
be installed, or (c) don't allow a "secure sockets" build unless the platform 
supports the sql method, or ...

<Prev in Thread]	Current Thread	[Next in Thread>
Secure sockets - sql method issue, Ken McDonell <= Re: [pcp] Secure sockets - sql method issue, Nathan Scott

Previous by Date:	Re: secure sockets - security issue!, Frank Ch. Eigler
Next by Date:	Secure sockets - unnecessary client certificate initialization issue, Ken McDonell
Previous by Thread:	secure sockets - security issue!, Ken McDonell
Next by Thread:	Re: [pcp] Secure sockets - sql method issue, Nathan Scott
Indexes:	[Date] [Thread] [Top] [All Lists]