ssl_error_bad_cert_domain for valid cert

RESOLVED DUPLICATE of bug 1136616

Status

()

Firefox
Security
--
major
RESOLVED DUPLICATE of bug 1136616
3 years ago
3 years ago

People

(Reporter: Gavin Carothers, Unassigned)

Tracking

36 Branch
x86_64
Linux
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment)

(Reporter)

Description

3 years ago
Created attachment 8570112 [details]
Screenshot from 2015-02-26 08:41:20.png

User Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.111 Safari/537.36

Steps to reproduce:

Visit a domain with a complex wildcard SSL cert

https://lmi_multiple_pacer_pdfs.storage.googleapis.com/2079784.pdf?Signature=52srPzZ%2FsfDDg%2BEXQ4ISgZ24SRk%3D&Expires=1424987541&GoogleAccessId=GOOGAMAOF2WQHK2MTQOA

For example. (Note that link will expire and end up sending an authorization error this is NOT the error)

Also effects 37 branches, does NOT effect 35 branch.


Actual results:

lmi_multiple_pacer_pdfs.storage.googleapis.com uses an invalid security certificate.

The certificate is only valid for the following names:
  *.googleusercontent.com, *.blogspot.com, *.bp.blogspot.com, *.commondatastorage.googleapis.com, *.doubleclickusercontent.com, *.ggpht.com, *.googledrive.com, *.googlesyndication.com, *.safenup.googleusercontent.com, *.sandbox.googleusercontent.com, *.storage.googleapis.com, blogspot.com, bp.blogspot.com, commondatastorage.googleapis.com, doubleclickusercontent.com, ggpht.com, googledrive.com, googleusercontent.com, static.panoramio.com.storage.googleapis.com, storage.googleapis.com  


Expected results:

The list of valid domains includes the domain wildcard for the domain being marked as invalid.
(Reporter)

Updated

3 years ago
Severity: normal → major
Component: Untriaged → Security

Updated

3 years ago
Status: UNCONFIRMED → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 1136616
You need to log in before you can comment on or make changes to this bug.