439
edits
Changes
correct some inaccuracies.
3. The third exception is applications that must have a separately managed environment. Typically these applications would have a mode (probably default) which would open NSS normally, but could be configured to use their own NSS environment. The options to use the system or private environment should not be hard coded in the application, but should be under user/administrator control. Applications of this class would include Server products or test modes of application products (like Firefox profiles). In this mode the application should initialize NSS with it's traditional Init call, passing in the appropriate private database.
On Linux, the effect of either first initialization as well as exceptions 1 or 2 will be to:
#Open a database in the home directory of the user running. With the flags specified by the application (probably ~R/.pki/nssdbW, Optimize space, etc).#Load any User specified PKCS #11 modules(chosed by the OS).
#Open the system database in /etc/pki/nssdb readonly.
#Load any System specified PKCS #11 modules(specified in /etc/pki/nssdb/pkcs11.txt).
#Load the NSS builtins module.
