[REVIEW-3-5] more robust way for nss initialization, related fdo#45171
Enrico Weigelt
enrico.weigelt at vnc.biz
Fri May 4 09:05:31 PDT 2012
> On Fri, 2012-05-04 at 16:44 +0200, Enrico Weigelt wrote:
> > Hey, wait a second, LO accesses mozilla's private configuration ?!
>
> In order to set the certificate directory for nss so that when using
> the digital signatures feature the user's personal firefox/thunderbird
> certs can be found to suggest for use.
The big problem here is: you're directly relying on the *private*
configuration/runtime data of a completely different application.
That data was never meant to be shared with anyone. It's even still
one of the things blocking a really-multiprocess Mozilla (which these
guys are talking about for now about a decade), and it already causes
more than enough trouble within Mozilla.
If the goal is having a (per-user) global cert pool, why not just
inventing some ? Could be a simple as just putting all certs in a
proper directory (like found on most distros in /usr/share/ca-certificates).
cu
--
Mit freundlichen Grüßen / Kind regards
Enrico Weigelt
VNC - Virtual Network Consult GmbH
Head Of Development
Äußere Bayreuther Str. 55, D - 90409 Nürnberg
Tel: +49 911 72303-30
Fax: +49 911 72303-50
enrico.weigelt at vnc.biz; www.vnc.de
More information about the LibreOffice
mailing list