If you think a bug might affect users in the 57 release, please set the correct tracking and status flags for Release Management.

Do not access NSS's databases (cert8.db and key3.db) during startup

RESOLVED DUPLICATE of bug 1370516

Status

()

Core
Security: PSM
RESOLVED DUPLICATE of bug 1370516
7 years ago
9 days ago

People

(Reporter: briansmith, Unassigned)

Tracking

({perf})

Trunk
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [ts][psm-backlog])

I think that it should be (made) possible to use NSS's hashing and HMAC functions during startup, before opening the NSS key and cert DBs. This is part of our overall goal of eliminating File I/O during startup whenever possible, for performance reasons.

Comment 1

7 years ago
Now that you can open NSS databases later, We could experiment with using NSS_NoDBInit() and then using NSS_OpenUserDB to later open our db's and slots. To do this right, we would probably want to remember FIPS preferences in firefox because you wouldn't want to do this in FIPS mode and you won't know until you open the database.

There may have to be additional NSS changes to make that all work.

bob
Keywords: perf
Whiteboard: [psm-startup] → [psm-startup][ts]
Whiteboard: [psm-startup][ts] → [ts]
Assignee: bsmith → nobody
Whiteboard: [ts] → [ts][psm-backlog]
Status: NEW → RESOLVED
Last Resolved: 9 days ago
Resolution: --- → DUPLICATE
Duplicate of bug: 1370516
You need to log in before you can comment on or make changes to this bug.