Closed Bug 83130 Opened 23 years ago Closed 23 years ago

Can only get rsa-dual-use certs.

Categories

(Core Graveyard :: Security: UI, defect, P2)

Product:
Core Graveyard
Component:
Security: UI
Version:
1.0 Branch
Platform:
x86
Windows NT
Type:
defect

Tracking

(Not tracked)

Status:
VERIFIED FIXED
Milestone:
psm2.0

People

(Reporter: junruh, Assigned: javi)

References

(
URL
)

Details

(Whiteboard: need QA to recheck) 

5/29 WinNT Netscape 6 build. Here are the test results.
1.) Single Click 1024 rsa-dual-use - 
https://junruh.mcom.com:444/DirUserEnroll.html - Pass
2.) Signing Only Key  2048 bits with rsa-sign - 
https://junruh.mcom.com:444/DirUserEnrollSign.html Submit button does nothing.
3.) Key Escrow  512 bits with rsa-ex - 
https://junruh.mcom.com:444/DirUserEnrollEncrypt.html An Error was encountered 
while filling certificate with contents of the CRMF message.
4.) Dual key 1024 bits with rsa-ex & rsa-sign - 
https://junruh.mcom.com:444/DirUserEnrollDual.html An Error was encountered 
while filling certificate with contents of the CRMF message.
5.) Single Click forced Backup 2048 bits with rsa-dual-use - 
https://junruh.mcom.com:444/backup/DirUserEnroll.html - Pass
6.) Signing Only Key forced backup 512 bits with rsa-sign - 
https://junruh.mcom.com:444/backup/DirUserEnrollSign.html - Submit button does 
nothing.
7.) Key Escrow with forced Backup 1024 bits with rsa-ex - 
https://junruh.mcom.com:444/backup/DirUserEnrollEncrypt.html - An Error was 
encountered while filling certificate with contents of the CRMF message.
8.) Dual Key with forced Backup - 2048 bits rsa-ex &rsa-sign - 
https://junruh.mcom.com:444/backup/DirUserEnrollDual.html - An Error was 
encountered while filling certificate with contents of the CRMF message.
9.) Certificate Renewal server - 
https://gilbeys.red.iplanet.com:80/DirUserEnroll.html - Pass
10.) KeyGen - https://gilbeys.red.iplanet.com:80/DirUserEnrollKeyGen.html - 
Fails, shows blank page after 20 seconds.
*** Bug 65748 has been marked as a duplicate of this bug. ***
Using linux build ID 2001052908.
agree with John on 1),2),3),4)
5), I get an "exit 139" (no core file. The browser exits).
6),7),8),9),10). agree.
Moreover, the dialog box displaying the "Important: this certificate authority
has asked to make a backup of your encryption key...." info is too small. The
buttons at the bottom are only partially visible.
-> javi
Assignee: ddrinan → javi
-> 2.0, P2
Priority: -- → P2
Target Milestone: --- → 2.0
Mass reassigning target to 2.1
Target Milestone: 2.0 → 2.1
Moving back to 2.0. The client must perform all CRMF functions correctly.  Some
of these broken cases are deployment showstoppers.
Target Milestone: 2.1 → 2.0
Javi points out that junruh's tests #3 and #7 depend on NSS bug 80416.  I've
added that dependency.
Depends on: 80416
For the moment, I'm most interested in getting updates on 2, 4, and 8.  Can we
get more information on those bugs?  Do they still exist?

We'll need to fix the escrow bugs before we release the S/MIME client.

Regarding #10, I got a Verisign cert yesterday from this site:
https://digitalid.verisign.com/client/class1Netscape.htm
It uses KEYGEN.

Are there still KEYGEN problems?
Whiteboard: need QA to recheck
After retesting the 10 original sites with 6/25 WinNT branch, nothing has 
changed.
Tests 2 and 6 pass now also.
Fixed. The web pages were updated to remove Key Escrow.
Status: NEW → RESOLVED
Closed: 23 years ago
Resolution: --- → FIXED
Verified.
Status: RESOLVED → VERIFIED
No longer depends on: 80416
Product: PSM → Core
Version: psm2.0 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.