Report what went wrong when initializing NSS_NoDB_Init.

base/nss_init.cc

 // Copyright (c) 2008 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "base/nss_init.h"
 
 #include <nss.h>
 #include <plarena.h>
+#include <prerror.h>
 #include <prinit.h>
 
 // Work around https://bugzilla.mozilla.org/show_bug.cgi?id=455424
 // until NSS 3.12.2 comes out and we update to it.
 #define Lock FOO_NSS_Lock
 #include <secmod.h>
 #include <ssl.h>
 #undef Lock
 
 #include "base/file_util.h"
@@ skipping 14 matching lines @@
 
   // Aw, snap.  Can't find/load root cert shared library.
   // This will make it hard to talk to anybody via https.
   NOTREACHED();
   return NULL;
 }
 
 class NSSInitSingleton {
  public:
   NSSInitSingleton() {
+    // Initialize without using a persistant database (e.g. ~/.netscape)
+    SECStatus status = NSS_NoDB_Init(".");
+    if (status != SECSuccess) {
+      char buffer[513] = "Couldn't retrieve error";
+      PRInt32 err_length = PR_GetErrorTextLength();
+      if (err_length > 0 && size_t(err_length) < sizeof(buffer))
+        PR_GetErrorText(buffer);
 
-    // Initialize without using a persistant database (e.g. ~/.netscape)
-    CHECK(NSS_NoDB_Init(".") == SECSuccess);
+      NOTREACHED() << "Error calling NSS_NoDB_Init: " << buffer;
+    }
 
     root_ = InitDefaultRootCerts();
 
     NSS_SetDomesticPolicy();
 
     // Explicitly enable exactly those ciphers with keys of at least 80 bits
     for (int i = 0; i < SSL_NumImplementedCiphers; i++) {
       SSLCipherSuiteInfo info;
       if (SSL_GetCipherSuiteInfo(SSL_ImplementedCiphers[i], &info,
                                  sizeof(info)) == SECSuccess) {
@@ skipping 36 matching lines @@
 
 }  // namespace
 
 namespace base {
 
 void EnsureNSSInit() {
   Singleton<NSSInitSingleton>::get();
 }
 
 }  // namespace base