1.) Visit http://www.verisign.com/client/enrollment/index.html and request a 60 day free cert. What happens: The following page states that "The public key was not generated" 2.) Visit the above in-house URL and try any of the CMS 4.2 tests. What happens: After you click submit, the watch cursor appears for a few seconds and then returns you to the same page. No cert appears in the cert manager.
-> javi P1 target -> 2.0
Assignee: ssaux → javi
Priority: -- → P1
Target Milestone: --- → 2.0
The keygen process is required to get Verisign or intranet certs. This is a critical bug to fix.
Keywords: nsBranch, nsdogfood
This is fialing in RSA_NewKey This function call fails: http://lxr.mozilla.org/mozilla/source/security/nss/lib/freebl/rsa.c#264 trying to generate a prime for p. I'm gonna need nelsonb and mcgreer to help on this since they know what this code is supposed to be doing.
The problem was in using the sizeof operator on the variable sieve. On all platforms except the Mac, sieve was a static array of size 32*1024 (SIEVE_SIZE). On the Mac, it was of type unsigned char* (this is due to not being able to allocate that much memory on the stack for the Mac). So a loop that was supposed to execute 32*1024 times was only executing 4 times on the Mac (which is sizeof unsigned char*) That patch replaces all occurences of "sizeof sieve" with "SIEVE_SIZE" which was already defined in the file.
I worked with Javi on this and believe it is correct. So r=mcgreer.
Yes, this patch looks right to me.
Whiteboard: PDT; want plus; need r=, sr=, a= → PDT; want plus; need sr=, a=
This has been checked-in to trunk builds of Mozilla and to the trunk of NSS.
Fixed checked into 0.9.2 branch as well.
Status: NEW → RESOLVED
Last Resolved: 18 years ago
Resolution: --- → FIXED
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.