Comment 17 for bug 392104

Managed to import COMODO's ECC certificate.

This bug is present also in sun's JDK and it gets fixed as prescribed by Andreas Sterbenz:
http://blogs.sun.com/andreas/entry/the_java_pkcs_11_provider

We need to add the 'sun.security.pkcs11.SunPKCS11' provider with a single config-arg pointing to a file containing the following properties:
 name = NSS
 nssLibraryDirectory = /usr/lib
 nssDbMode = noDb
 attributes = compatibility

Tested on:
* Gentoo, needs devlibs/nss installed and a minor config modification:
  nssLibraryDirectory=/usr/lib/nss
and it works ok.
* Debian just needs libnss3-1d installed, and it also works ok.
* Fedora's NSS, by default is compiled most probably *without* ECC!
So it fails.
  (see: http://www.mozilla.org/projects/security/pki/nss/nss-3.11/nss-3.11-algorithms.html)