Certificate Manager shows and picks wrong certificate
Categories
(Core :: Security: PSM, defect)
Tracking
()
People
(Reporter: denis.meiswinkel, Unassigned)
Details
Attachments
(4 files)
Certificate Manager
User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:70.0) Gecko/20100101 Firefox/70.0
Steps to reproduce:
We have web Applications that use SSL client certificates to authenticate our users and their connections. Up until Firefox 70 the Certificate Manager only showed matching certificates for the specific URL and usually picked the right one. Now Firefox offers all user installed certificates and selects the same one all the time.
When Firefox is set to automatically pick the certificate, it also always uses the same one and the authentication fails because the certificates do not match.
Actual results:
Firefox picks the wrong certificate and shows the following error message:
Secure Connection Failed
An error occurred during a connection to www.xyzxyz.de: Peer does not recognize and trust the CA that issued your certificate. Error code: SSL_ERROR_UNKNOWN_CA_ALERT
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
Please contact the website owners to inform them of this problem.
You have to restart the whole browser and try to pick the right certificate.
Expected results:
Firefox should only show certificates that match the URL or pick the right certificate automatically so the connection can be established successfully.
This could also be related to 1582926. https://bugzilla.mozilla.org/show_bug.cgi?id=1582926
|
||
Comment 6•6 years ago
|
||
Bugbug thinks this bug should belong to this component, but please revert this change in case of error.
|
||
Updated•6 years ago
|
Description
•