Closed Bug 1620224 Opened 4 years ago Closed 4 years ago

Subject Alt Names shows [object Object] in new cert viewer

Categories

(Firefox :: Security, defect, P3)

defect

Tracking

()

RESOLVED FIXED
Firefox 76
Tracking Status
firefox76 --- fixed

People

(Reporter: johannh, Assigned: jcristau)

References

(Blocks 1 open bug, )

Details

Attachments

(1 file)

On this certificate, the SAN shows [object Object], and we should fix that. :)

Blocks: cert-viewer

As far as I can tell this SAN is using otherName with oid "1.3.6.1.5.5.7.8.5" (xmppAddr) and a "wiki.cacert.org" Utf8String. openssl x509 lists it as "othername:<unsupported>", I guess something like that would be ok?

rfc822Name / iPAddress / URI SANs should probably also be handled somehow, but I think those might just be missing the strings for their labels (e.g. the cert for https://1.1.1.1).

Flags: needinfo?(jhofmann)

Handle rfc822Name and iPAddress subjectAltNames, and replace "[object
Object]" with an explicit "unsupported" string for otherName.

Assignee: nobody → jcristau
Status: NEW → ASSIGNED

That seems okay to me, as mentioned in the bug. Thanks!

Flags: needinfo?(jhofmann)
Pushed by jcristau@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/6cafdb82131f
improve display for non-dNSName subjectAltNames. r=johannh,fluent-reviewers,flod
Status: ASSIGNED → RESOLVED
Closed: 4 years ago
Resolution: --- → FIXED
Target Milestone: --- → Firefox 76
You need to log in before you can comment on or make changes to this bug.