[Swan-dev] notes from meeting nss guys

Paul Wouters paul at nohats.ca
Thu Feb 26 22:23:02 EET 2015


On Tue, 24 Feb 2015, Matt Rogers wrote:

> Yes, the re-write uses the SQL format database which is for allowing
> simultaneous access. Now the decoding, verification, revocation checking
> and importing of certificates is handled by a helper program that does
> its own initialization of what will be pluto's 'runtime' nss db in the
> SQL format. When it imports certificates, pluto is able to pick those up
> right away, so it works well.

When you say "runtime" you mean an ephemeral store right? I think Bob
called this the "cached nss db". That is, the "runtime" nss.db is the
file based nss.db plus the cached nss.db. On stop the cache is lost.

Paul


More information about the Swan-dev mailing list