Closed
Bug 126834
Opened 23 years ago
Closed 22 years ago
CERTSignedCrl * SEC_NewCrl(....) fails to set the 'url' field in the return struct
Categories
(NSS :: Libraries, defect, P1)
Tracking
(Not tracked)
RESOLVED
FIXED
3.4
People
(Reporter: rangansen, Assigned: rrelyea)
References
Details
Attachments
(1 file)
3.53 KB,
patch
|
wtc
:
review+
|
Details | Diff | Splinter Review |
Note that the value for the url passed is actually stored correctly in the db - but it is somehow not set correctly in the ret val.
Updated•23 years ago
|
Priority: -- → P1
Target Milestone: --- → 3.4
Comment 1•23 years ago
|
||
I checked the NSS 3.3.2 source code and found that it doesn't set the url field of the return value of SEC_NewCrl either. So my first finding is that this is not a regression of NSS 3.4. It's not clear to me whether SEC_NewCrl is supposed to set the url field of the return value. Bob, do you know? Rangan, do you need SEC_NewCrl to set the url field of its return value? I did find a problem in SEC_FindCrlByKeyOnSlot that should be unrelated to Rangan's complaint. SEC_FindCrlByKeyOnSlot is not setting the url field of its return value either. SEC_NewCrl calls SEC_FindCrlByKeyOnSlot and checks the url field of the return value, so this is problematic.
Assignee: wtc → relyea
Version: 3.4 → 3.3.2
Comment 2•23 years ago
|
||
Sorry, my previous comment was wrong. SEC_NewCrl in NSS 3.3.2 sets the 'url' field in the return value. So this bug is a regression of NSS 3.4.
Version: 3.3.2 → 3.4
Reporter | ||
Comment 3•23 years ago
|
||
Wan-Teh: We need the url value to enable automatic update for the crl...
Assignee | ||
Comment 4•23 years ago
|
||
This patch actually fixes both bug 126834 (this one) and bug 127254 . Note the change in the PK11_FindCRLByName. It should be safe because this function is not exported.
Comment 5•23 years ago
|
||
Rangan, could you check out the tip of NSS and see if Bob's patch fixed your problem? Thanks.
Comment 6•23 years ago
|
||
Comment on attachment 71410 [details] [diff] [review] Fix missing URL values from crl structure. r=wtc.
Attachment #71410 -
Flags: review+
Reporter | ||
Comment 7•23 years ago
|
||
Works ok now, with the tip of NSS...however, we won't see the effect of the fix in the nightly builds unless the NSS_CLIENT_TAG is moved...
Comment 8•23 years ago
|
||
Rangan, The Mozilla tree is closed for mozilla 0.9.9 right now, so I can't move the NSS_CLIENT_TAG without an approval from drivers@mozilla.org. If you want this fix in mozilla 0.9.9, we need to get an approval from the drivers.
Reporter | ||
Comment 9•23 years ago
|
||
I think we should try to get an approval for this, because without this the crl autoupdate feature would be rather unusable ... Stephane: what's your openion on this? Also, we probably should try to get an approval for bug# 108021, as well...
Assignee | ||
Comment 10•23 years ago
|
||
wtc's review is sufficient for this to make NSS 3.4. bob
Comment 11•22 years ago
|
||
The fix is in the NSS_CLIENT_TAG of NSS now. Marked the bug fixed.
Status: NEW → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•