Closed Bug 300071 Opened 20 years ago Closed 18 years ago

Usertrust code-signing (object-signing) certificate does not validate (UTN-USERFirst-Object Root CA)

Categories

(CA Program :: CA Certificate Root Program, task)

x86
Windows 2000
task
Not set
normal

Tracking

(Not tracked)

RESOLVED DUPLICATE of bug 289988

People

(Reporter: ulf.pietruschka, Assigned: hecker)

References

()

Details

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; de-DE; rv:1.7.8) Gecko/20050511 Firefox/1.0.4 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; de-DE; rv:1.7.8) Gecko/20050511 Firefox/1.0.4 An applet (resp jar-archive) signed with a comodo code-signing certificate which uses the Usertrust UTN-USERFirst-Object Root CA is not accepted as trustworthy although the root CA is contained in the buildin CA list. The certificate itself is OK (works with Internet Explorer). Clicking on the certificate in the list of buildin CAs (advanced settings) also produces an error message. Reproducible: Always Steps to Reproduce: The problem is reproducable with Win2K, WinXP and SuSE Linux 9.2 (all running Firefox 1.0.4). 1. Create a test account on www.viacontext.com 2. Login with your test account and click on your personal archive folder 3. Choose the second upload option (Upload multiple files), which will load the applet and show the security alert. Actual Results: The security alert describes the issuer as non-trustworthy Expected Results: Validate against the root CA and describe the issuer as trustworthy The usertrust root CAs have been introduced in mozilla.org in 12/04 and should work properly (bug# 242610)
Bug is still unresolved (as of Firefox 1.5 RC3)
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8) Gecko/20051111 Firefox/1.5 Verified. The cert viewer says "Could not verify this certificate for unknown reasons" at the top. The cause appears to be bug 289988.
UTN-USERFirst-Object also describes the issuer as not trusted, which is the more problematic behaviour than the UI problem, since using this certificate for object signing has not the desired effect. (In reply to comment #2) > Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8) Gecko/20051111 > Firefox/1.5 > > Verified. The cert viewer says "Could not verify this certificate for unknown > reasons" at the top. The cause appears to be bug 289988. >
*** This bug has been confirmed by popular vote. ***
Status: UNCONFIRMED → NEW
Ever confirmed: true
Have someone resolve this bug? I'm in the same case of Ulf Pietruschka. thanks, Regards, Julien Renier
Depends on: 242610
So, is this merely a duplicate of bug 289988? What purpose does this bug serve? There is no longer any decision to be made about the UTN certs. There is just a broken PSM UI (bug 289988) that lies about their trustedness. Any reason not to mark this bug resolved?
Depends on: 289988
QA Contact: ca-certificates
Resolving based on Nelson's assessment. Gerv
Status: NEW → RESOLVED
Closed: 18 years ago
Resolution: --- → DUPLICATE
Product: mozilla.org → NSS
Product: NSS → CA Program
You need to log in before you can comment on or make changes to this bug.