Created attachment 275039 [details] [diff] [review] simple fix for the problem The reason for the failure was the change http://bonsai.mozilla.org/cvslog.cgi?file=mozilla/security/nss/lib/certhigh/ocsp.c&rev=1.26 made to fix bug 287850. The fix made CERT_GetOCSPAuthorityInfoAccessLocation set code different from what was expected by libpkix in case when AIA extension is not present or undecodeble. As the result, an error was thrown and taken as cert revocation reason.
Comment on attachment 275039 [details] [diff] [review] simple fix for the problem r=nelson for the trunk
Of course, this is c code, which doesn't really ever "throw" anything. :)
/cvsroot/mozilla/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_ocsprequest.c,v <-- pkix_pl_ocsprequest.c new revision: 1.3; previous revision: 1.2