Closed Bug 454107 Opened 16 years ago Closed 5 years ago

Cert download failures are silent - no warning or error display

Categories

(Core :: Security: PSM, defect, P5)

Product:
Core
Component:
Security: PSM
Version:
1.9.0 Branch
Platform:
x86
Windows XP
Type:
defect

Tracking

()

Status:
RESOLVED WONTFIX

People

(Reporter: nelson, Unassigned)

References

Details

(Whiteboard: [psm-backlog])

Bug 453227 reported that cert downloads were failing silently. The cause of that particular failure was an NSS regression that caused a good certificate download to be treated by NSS as a bad download. But NSS's routine that processes those downloads, CERT_DecodeCertPackage reports a failure status to its caller, nsNSSCertificateDB::getCertsFromPackage, yet that failure return value does not cause any UI to be displayed telling the user about the failure. The failure is SILENT, from a UI perspective. This bug report says: those failures should not be silent. The user should be told: the server tried to download one or more certificates, and that failed.
The user should be told: Installation of one or more certificates failed. Please contact the site operator to report this incident. (The server doesn't download a certificate, it's the client (browser) which downloads it. Second, at this stage it's clear that a certificates was supposed to be installed into the browser's security device. Alternatively use "Import" instead of "Installation".)
Another correction: Please contact the site operator *and* report this incident.
reassign bug owner. mass-update-kaie-20120918
Assignee: kaie → nobody
Component: Security: UI → Security: PSM
Depends on: 1024871
Priority: -- → P5
Whiteboard: [psm-backlog]
Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.