[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #2949 [Tor Browser]: Make Intermediate Cert Store Memory-Only for TorBrowser
#2949: Make Intermediate Cert Store Memory-Only for TorBrowser
----------------------------+-----------------------------------------------
Reporter: mikeperry | Owner: mikeperry
Type: defect | Status: closed
Priority: normal | Milestone:
Component: Tor Browser | Version:
Resolution: fixed | Keywords: MikePerryIteration20110515
Parent: #2877 | Points: 3
Actualpoints: 4 |
----------------------------+-----------------------------------------------
Changes (by mikeperry):
* status: accepted => closed
* resolution: => fixed
* actualpoints: => 4
Comment:
Ok, I banged on this for a while and can't seem to get it to work right.
It is easy to make the intermediate cert store and other NSS dbs memory-
only, but it does not appear easy to clear them at will.
It looks like Firefox's use of NSS is a crazy minefield of thread-safe and
thread-unsafe accesses. I have some code that successfully re-initializes
and clears NSS, but if any tabs are open with SSL pages in them, we get
random segfaults and crashes.. I'm going to leave the code in the patch,
but it is not run.
The pref needs to be set to the desired value at browser initialization,
and cannot be toggled by Torbutton.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2949#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs