Closed Bug 1018876 Opened 7 years ago Closed 7 years ago
(mozilla::pkix) FF32 revoked EV cert checks fails
User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.76.4 (KHTML, like Gecko) Version/7.0.4 Safari/537.76.4 Steps to reproduce: Visit https://test-sspev.verisign.com:2443/test-SSPEV-revoked-verisign.html in FF32. Actual results: The site is displayed without any errors or warnings Expected results: The site should fail, as the cert has been revoked. FF29 correctly identifies the cert as revoked and provides a warning.
I can reproduce on mac on 32, but not on 30. Don't know when this regressed.
https://hg.mozilla.org/mozilla-central/pushloghtml?fromchange=382f676d0ed9&tochange=1417d180a1d8 Still working on an inbound range.
Oh, nevermind. Totes blaming bug 990248. I didn't realize, from the summary, that this was a Thing. David, this seems serious. Can you look into it, please? :-)
Yes - we're going to change how expired responses that also indicate a revoked/unknown certificate are handled.
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 997509
You need to log in before you can comment on or make changes to this bug.