Stack Overflow
Stack Overflow

Questions tagged [nss]

Network Security Services (NSS) is a set of libraries designed and maintained by Mozilla to support cross-platform development of security-enabled client and server applications.

Network Security Services (NSS) is a set of libraries designed and maintained by Mozilla to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.

169 questions
1
vote
1 answer

Curl:How to handle NSS error -8156?

I have secure nifi in which I have to use rest api, while invoking get request of processor like this:https://server_ip/nifi-api/processors/015d1364-f372-1e67-e201-a15d0erte56t. But, I got a certificate error. So, I decided to check is it…
user8438589
1
vote
1 answer

PHP CURL "NSS: client certificate not found (nickname not specified)" Issue

Request to a single specific https endpoint fails on one of my servers with "NSS: client certificate not found (nickname not specified)" error from PHP CURL. When I ran the same query from the command line with verbose option I got the same error,…
Gino Pane
  • 4,740
  • 5
  • 31
  • 46
1
vote
3 answers

LDAP won't update if cached data exists

We have an SELinux client that authenticates network users using LDAP connecting to an Active Directory server. Since our machines have to operate "untethered," we have to use nscd to cache group and passwd info. Here's the issue. If we change group…
john146
  • 977
  • 2
  • 11
  • 15
1
vote
0 answers

NSS Apache SSL Incorrect Password

I'm setting up NSS for my Apache server but I'm running into an error. I feel like this is a really easy fix that I'm overlooking. Here's my Apache error log: [Tue Mar 21 16:09:13 2017] [error] Password for slot internal is incorrect. [Tue Mar 21…
alexs973
  • 183
  • 1
  • 3
  • 16
1
vote
0 answers

SEC_ERROR_INVALID_TIME error in firefox for valid certificate

I have generated a certificate for apache with openssl ca -config openssl.conf -extensions usr_cert -in reqs/httpd.req -out httpd.pem -startdate 170226000000Z -enddate 180226000000Z -noemailDN This certificate is accepted by openssl, chrome, git…
Dirty Coder
  • 11
  • 3
1
vote
1 answer

curl "Peer's public key is invalid." unable to load client key: -8178 (SEC_ERROR_BAD_KEY)

I'm trying connect my PHP app to the server, which require auth by private key and does not have certs on public servers. API location: https://b2b.postaonline.cz/ To acces the API from browser, I have installed these certs:…
Ivan
  • 315
  • 1
  • 3
  • 16
1
vote
2 answers

How can I translate Perl's Convert::ASN1 to Ruby code?

Can somebody advise me what this code does and how can I convert it to Ruby in most simple way? #!perl use Convert::ASN1; my $asn1 = Convert::ASN1->new(encoding => 'DER'); $asn1->prepare(q< Algorithm ::= SEQUENCE { …
vava
  • 24,851
  • 11
  • 64
  • 79
1
vote
1 answer

Convert OpenSSL public key into NSS one

How do I convert public key generated by OpenSSL into one NSS would understand? I've generated key with OpenSSL, exported it into pkcs12 format, imported it into NSS database and then extract public key with McCoy utility. And it was different to my…
vava
  • 24,851
  • 11
  • 64
  • 79
1
vote
1 answer

Add new client certificate to NSS db

I am working on CentOS, and I have NSS 3.19.1 I am trying to add a client certificate with rsa private key to the NSS database. Im working inside of /etc/pki/nssdb and it has the contents: cert8.db cert9.db key3.db key4.db pkcs11.txt secmod.db I…
Cody Pritchard
  • 635
  • 1
  • 9
  • 28
1
vote
0 answers

Which NSS Dynamic Library contains Certificate Parsing functions?

I need to write a small program which parses X509 Certificates, build a Certificate Chain and validate it using Mozilla NSS Library. Starting from parsing a single Certificate, I find these two function: CERT_ConvertAndDecodeCertificate(char *str)…
Nicholas Mainardi
  • 59
  • 1
  • 4
1
vote
1 answer

to build mozilla nss vs2012

I want to build NSS 3.20 for Windows 64 bit using visual Studio 2012. But this requires mozilla build which is a current binary for visual 2013. I have my projects in visual Studio 2012. Can anyone provide mozilla build package for vs2012? The…
Swapnil Kapse
  • 11
  • 1
1
vote
1 answer

How to export RSA private key to pem format using java

I got private key which I would like to export to .pem format Problem is that, when I call privateKey.getEncoded() I get null. But I can get all info like exponent, modulus and so one (all from interface RSAPrivateKey). privateKey is…
Marcin Mierzejewski
  • 726
  • 11
  • 26
1
vote
1 answer

Firefox 40 does not allow the extension even after signing

I am Using Firefox 40 and followed Signing an XPI article to sign an XPI. Used certutil to sign the XPI, imported the X509.cacert in firefox Certificate Manager (Authorities tab) every step completed as mentioned in the article. Now if I install the…
Prakash
  • 742
  • 7
  • 19
1
vote
1 answer

Listing certificates from a CAC without pin

I'm developing a CAC authentication app. I'm running RHEL 5.5 and have a card reader attached to my machine. When I insert a smart card/CAC, there is a popup notification that comes on the upper right hand side on the window where the clock is and…
azm882
  • 125
  • 3
  • 12
1
vote
1 answer

Is PKCS11 verify function supported in NSS 3.18.1 Public function

I am trying to call PK11_Verify inside a js. let PK11_Verify = null; PK11_Verify = declareFunction("PK11_Verify", nss3, [ SECStatus, SECKEYPublicKey, SECItem.ptr, SECItem.ptr, ctypes.voidptr_t ]); // ... let rv = PK11_Verify(tokenPublicKey,…
Nona Haron
  • 171
  • 1
  • 1
  • 6
1 2 3
11 12