Last Comment Bug 492370 - Certificate exceptions sometimes not found
: Certificate exceptions sometimes not found
Status: RESOLVED DUPLICATE of bug 659736
:
Product: Core
Classification: Components
Component: Security (show other bugs)
: unspecified
: x86 Windows XP
: -- normal (vote)
: ---
Assigned To: Nobody; OK to take it and work on it
:
:
Mentors:
Depends on: CVE-2011-0082
Blocks:
  Show dependency treegraph
 
Reported: 2009-05-11 08:29 PDT by Siyivan
Modified: 2012-03-22 12:15 PDT (History)
4 users (show)
See Also:
Crash Signature:
(edit)
QA Whiteboard:
Iteration: ---
Points: ---
Has Regression Range: ---
Has STR: ---


Attachments
Untrusted certificate and valid certificate at the same time (42.97 KB, image/gif)
2009-05-11 08:47 PDT, Siyivan
no flags Details
Untrusted certificate and valid certificate at the same time (42.92 KB, image/gif)
2009-05-11 08:48 PDT, Siyivan
no flags Details

Description Siyivan 2009-05-11 08:29:22 PDT
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; es-ES; rv:1.9.0.6) Gecko/2009011913 Firefox/3.0.6
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2a1pre) Gecko/20090510 Firefox/3.6a1pre

When accessing a page with a self-signed certificate for which an exception has been added, _sometimes_ firefox 'forgets' the exception and show "This connection is untrusted message".
When going to readd it, it's remembered and you're not allowed to add the exception (so it's not that the exception were deleted from the store).

See attached screenshot.

Workaround: Choose to add the exception, get firefox to realise it knows the certificate, cancel window, reload https page.


Reproducible: Always
Comment 1 Siyivan 2009-05-11 08:47:24 PDT
Created attachment 376723 [details]
Untrusted certificate and valid certificate at the same time
Comment 2 Siyivan 2009-05-11 08:48:55 PDT
Created attachment 376724 [details]
Untrusted certificate and valid certificate at the same time
Comment 3 niels.nwx 2011-09-30 05:20:23 PDT
This issue is still in Firefox 7.0.1 (Windows 7 64 bit). Please deliver a fix.
When you've added a permanent exception for a self-signed certificate this is sometimes forgotten at random times. The page that the certificate is self-signed is shown
Comment 4 niels.nwx 2011-09-30 05:22:34 PDT
and when you want to add the exception again it shows that the certificate is valid, yet you can't continue and you can't add the exception. The only way to quickly solve it is by killing firefox.exe.

Possibly related or the same:
https://bugzilla.mozilla.org/show_bug.cgi?id=524500
https://bugzilla.mozilla.org/show_bug.cgi?id=457573
Comment 5 Kai Engert (:kaie) 2012-01-11 07:18:10 PST
I don't what the issue was in 2009.

The additional issue described in 2011 sounds like a dupe of 660749.

*** This bug has been marked as a duplicate of bug 660749 ***
Comment 6 Brian Smith (:briansmith, :bsmith, use NEEDINFO?) 2012-01-11 11:28:32 PST
Let's see whether the fix for bug 660749 fixes this issue, before we mark that it is a duplicate.
Comment 7 Siyivan 2012-01-11 12:47:36 PST
What was "added" in 2011? The content of comment 4? You can even view it in the screenshot how the button to add the exception was disabled.

Niels, did you test the workaround that I mentioned?

I'm not sure the fix for bug 660749 would fix it other than by chance when touching related code. It is for "trusting less" stored certificates, this is due to "not trusting enough" (not finding the cert).
Comment 8 Brian Smith (:briansmith, :bsmith, use NEEDINFO?) 2012-03-17 09:27:34 PDT
The "valid and invalid at the same time" issue is now bug 659736.

*** This bug has been marked as a duplicate of bug 659736 ***

Note You need to log in before you can comment on or make changes to this bug.