Closed Bug 707873 Opened 13 years ago Closed 8 years ago

Crash when importing an certificate in xuda format

Categories

(Core :: Security: PSM, defect)

x86_64
Windows 7
defect
Not set
critical

Tracking

()

RESOLVED WORKSFORME

People

(Reporter: ats10802, Unassigned)

References

Details

(Keywords: crash)

Crash Data

User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.0
Build ID: 20111104165243

Steps to reproduce:

Importing CA certificate download from https://keon.ust.hk/retrieval/send-ca-cert.xuda?cert=all


Actual results:

Crashed. Unable to start up again unless removing the profile OR revert the cert8.db to the version before the import.


Expected results:

It SHOULD NOT Crash.
Keywords: crash
Do you have the crash id from that crash ?
(install https://addons.mozilla.org/de/thunderbird/addon/viewabout/ and open about:crashes )
Severity: normal → critical
Component: General → Security: PSM
Product: Thunderbird → Core
QA Contact: general → psm
Version: 8 → unspecified
(In reply to Matthias Versen (Matti) from comment #1)
> Do you have the crash id from that crash ?
> (install https://addons.mozilla.org/de/thunderbird/addon/viewabout/ and open
> about:crashes )

Here is the crash ID:
bp-af0bbd1c-2d8f-4e32-8ad1-9b3ac2111205
bp-6a237744-e4be-436b-8870-b48362111205

I have seen this for few times so there are more than one crash report.
This looks like a dupe of bug 697420 but I leave this open because the other bug doesn't contain any STR

I didn't get a crash with FF8.0 Can you try it again to import the cert ?
It could be just a temporary OSCP Server issue that caused this crash.
Crash Signature: [@ CERT_DestroyOCSPResponse ]
Depends on: 697420
(In reply to Matthias Versen (Matti) from comment #3)
> This looks like a dupe of bug 697420 but I leave this open because the other
> bug doesn't contain any STR
> 
> I didn't get a crash with FF8.0 Can you try it again to import the cert ?
> It could be just a temporary OSCP Server issue that caused this crash.

Yes. It seems to be OK if I disable checking with OSCP server.
I have receive reply from the university. They say it may be some compatibility problem.
Depends on: 716345
Depends on: CVE-2012-0441
Crash Signature: [@ CERT_DestroyOCSPResponse ] → [@ CERT_DestroyOCSPResponse ] [@ CERT_DestroyOCSPResponse | ocsp_CacheEncodedOCSPResponse]
Status: UNCONFIRMED → NEW
Ever confirmed: true
Is this still an issue?
Flags: needinfo?(ats10802)
Actually, nevermind - I know this isn't an issue since we don't use NSS' OCSP fetching/verification functions in Firefox/Thunderbird any more.
Status: NEW → RESOLVED
Closed: 8 years ago
Flags: needinfo?(ats10802)
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.