Closed
Bug 978870
Opened 11 years ago
Closed 8 years ago
Implement a proper fix regarding the need to log in to sqlite-based NSS databases, particularly regarding
Categories
(Core :: Security: PSM, defect)
Core
Security: PSM
Tracking
()
RESOLVED
DUPLICATE
of bug 1389664
People
(Reporter: briansmith, Unassigned)
Details
(Whiteboard: [psm-backlog])
In bug 978120, we implemented a hack to get nsIX509Cert.addCert and nsIX509Cert.setCertTrust to work in Android and B2G xpcshell tests; see attemptToLogInWithDefaultPassword in nsNSSCertificateDB.cpp. Luckily these functions are not used in Android or B2G except for the tests.
However, it is likely that somebody will eventually try to use these functions on Android and B2G, and we should make sure they do the correct thing, or we should remove them.
Two unanswered questions:
1. What happens when we call PK11_InitPin to log in with the default blank password when the user has set a different password?
2. If we call PK11_InitPin with the default blank password, then will the user be able to log in later with the correct master password? Or, does anything that needs the master password just break?
|
||
Updated•9 years ago
|
Whiteboard: [psm-backlog]
|
|
||
Comment 1•8 years ago
|
||
(In reply to Brian Smith (:briansmith, :bsmith, use NEEDINFO?) from comment #0)
> 1. What happens when we call PK11_InitPin to log in with the default blank
> password when the user has set a different password?
PK11_InitPin returns SECFailure, and nothing happens.
> 2. If we call PK11_InitPin with the default blank password, then will the
> user be able to log in later with the correct master password? Or, does
> anything that needs the master password just break?
If they don't already have a password, it'll set a blank one. They can then set the password to a non-blank one if they wish.
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•