[tor-bugs] #2949 [Tor Browser]: Make Intermediate Cert Store Memory-Only for TorBrowser
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Sun May 15 05:43:10 UTC 2011
#2949: Make Intermediate Cert Store Memory-Only for TorBrowser
----------------------------+-----------------------------------------------
Reporter: mikeperry | Owner: mikeperry
Type: defect | Status: closed
Priority: normal | Milestone:
Component: Tor Browser | Version:
Resolution: fixed | Keywords: MikePerryIteration20110515
Parent: #2877 | Points: 3
Actualpoints: 4 |
----------------------------+-----------------------------------------------
Changes (by mikeperry):
* status: accepted => closed
* resolution: => fixed
* actualpoints: => 4
Comment:
Ok, I banged on this for a while and can't seem to get it to work right.
It is easy to make the intermediate cert store and other NSS dbs memory-
only, but it does not appear easy to clear them at will.
It looks like Firefox's use of NSS is a crazy minefield of thread-safe and
thread-unsafe accesses. I have some code that successfully re-initializes
and clears NSS, but if any tabs are open with SSL pages in them, we get
random segfaults and crashes.. I'm going to leave the code in the patch,
but it is not run.
The pref needs to be set to the desired value at browser initialization,
and cannot be toggled by Torbutton.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2949#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list