Closed Bug 723898 Opened 12 years ago Closed 11 years ago

FF10 now fails to load https://www.cjsm.net

Categories

(Core :: Security: PSM, defect)

Product:
Core
Component:
Security: PSM
Version:
10 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: jpr, Unassigned)

References

Details

Referenced from https://support.mozilla.org/en-US/questions/917062

FF10 now fails to load https://www.cjsm.net.  Works in FF9 and IE9.  Fails on Chrome 18 as well.  Hangs forever.
In case we changed something related to SSL renegotiation, openssl tells me this about the server:
   Secure Renegotiation IS NOT supported

Manually sending the same headers as those that Firefox sends does work for me.
is this caused by bug 702111 ?
Could be, https://support.mozilla.org/en-US/questions/917019 could also be the same thing.
Depends on: 702111
Keywords: regressionwindow-wanted
OS: Linux → All
Hardware: x86 → All
IE9, Google Chrome, Chrome Canary, and FF10 all have the same behavior.

It is caused by the 1/(n-1) record splitting that we are all doing now. I verified this by running Firefox with NSS_SSL_CBC_RANDOM_IV=0 set in the environment so that the site would load, and then running Firefox again without NSS_SSL_CBC_RANDOM_IV=0 in the environment to see it fail.
Component: Networking → Security: PSM
QA Contact: networking → psm
> IE9, Google Chrome, Chrome Canary, and FF10 all have the same behavior.

For IE9, that doesn't match comment 0.....
IE users would have to apply security update MS12-006 in order to see the same effect.
The site seems to load fine for me on Beta 25 and IE11 Release Preview... Resolve as WORKSFORME?
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.