Applications can avoid final case of failure by forcing the user to authenticate to softoken using PK11_Authenticate().
Sample code fragmentconfigdir = PR_smprintf("sql:%s",oldconfigdir); rv = NSS_InitReadWrite(configdir); if (rv != SECSuccess) { goto fail; } /* optional */ rv = PK11_Authenticate(slot ); if (rv != SECSuccess) { goto fail; } /* database has been updated... */
====== Mode 3A ======