Closed
Bug 84057
Opened 23 years ago
Closed 23 years ago
Crash visiting SSL site which has a UCS4 string in signer DN
Categories
(Core Graveyard :: Security: UI, defect)
Tracking
(Not tracked)
VERIFIED
FIXED
People
(Reporter: teilo+bugzilla, Assigned: javi)
References
()
Details
(Keywords: crash)
Attachments
(1 file)
1.62 KB,
patch
|
Details | Diff | Splinter Review |
From Bugzilla Helper: User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9+) Gecko/20010603 BuildID: 2001060308 When I view a page that is encrypted with a self-signed openSSL gernerated certificate mozilla crashes in PIPNSS after you accept the certificate. Reproducible: Always Steps to Reproduce: 1. Go to https://mailhost.teilo.net/ 2. Accept the certificate permenantly 3. Crash Actual Results: Mozilla crashes in PIPNSS.DLL Expected Results: Mozilla shows the page without crashing Note that if you re-start mozilla you can view the certificates contents in the preferences->security certs without mozilla crashing. Also happens in Secure IMAP in mail&news also https://www.sm.luth.se/
Reporter | ||
Comment 1•23 years ago
|
||
TalkBack IDs from 2001052504_0.9.1 (Downloaded 2001-06-04-11-0.9.1) (The nightly trunk did not have talkback enabled.) TB31313855M TB31312209Q
Comment 2•23 years ago
|
||
Over to PSM
Status: UNCONFIRMED → NEW
Component: Security: Crypto → Client Library
Ever confirmed: true
Keywords: crash
Product: Browser → PSM
Version: other → 2.0
Comment 3•23 years ago
|
||
*** This bug has been marked as a duplicate of 79414 ***
Status: NEW → RESOLVED
Closed: 23 years ago
Resolution: --- → DUPLICATE
Reporter | ||
Comment 4•23 years ago
|
||
Bug 79414 is about v1 certificates. mailhost.teilo.net uses a version 3 certificate.
Status: RESOLVED → REOPENED
Resolution: DUPLICATE → ---
Assignee | ||
Comment 5•23 years ago
|
||
This appears to be a problem with NSS's implementation of CERT_AsciiToName It fails converting the string "signer" (gdb) print signer $1 = 0x42412ec8 "E=adm@teilo.net, CN=mailhost.teilo.net, OU=Internet mail, O=teilo.net, L=Luleå, ST=Norrbotten, C=SE" into a valid CERTName structure. The UCS4 conversion function provided by NSS doesn't like the encoding of the L=Luleå field.
Assignee | ||
Comment 6•23 years ago
|
||
Update summary
Summary: Crash on viewing SSL encrypted pages with self-signed cerificates → Crash visiting SSL site which has a UCS4 string in signer DN
Assignee | ||
Comment 7•23 years ago
|
||
Assignee | ||
Comment 8•23 years ago
|
||
ddrinan: please review the patch.
Assignee: ddrinan → javi
Status: REOPENED → NEW
Comment 9•23 years ago
|
||
Javi, These seems like a good patch for the beta, but we really should find out what the NSS conversion routines do not like about the UCS4 encoding. Also, is PSM using the default UCS encode/decode functions are is it using mozilla supplied functions? bob
Comment 10•23 years ago
|
||
r=ddrinan.
Assignee | ||
Comment 11•23 years ago
|
||
Bob, After looking further into the problem, I think we were calling NSS incorrectly. The string "signer" is a return value from SSL_SecurityStatus which correctly interprets the CERTName structure and converts it to a UTF8 string. If you take that UTF8 string and then pass it to CERT_AsciiToName, CERT_ParseRFC1485AVA thinks the character in question 'å' is a UCS4 string. Since signer is really a UTF8 string, decoding the character fails. In essence, CERT_AsciiToName doesn't handle UTF8 strings. Which may be the desired effect of the function (as implied by the name). I can file a separate NSS bug to track that if you want.
Comment 12•23 years ago
|
||
sr=blizzard
Comment 13•23 years ago
|
||
a= asa@mozilla.org for checkin to the trunk. (on behalf of drivers)
Blocks: 83989
Assignee | ||
Comment 14•23 years ago
|
||
Fix has been checked in.
Status: NEW → RESOLVED
Closed: 23 years ago → 23 years ago
Resolution: --- → FIXED
Assignee | ||
Comment 15•23 years ago
|
||
*** Bug 76035 has been marked as a duplicate of this bug. ***
Assignee | ||
Comment 16•23 years ago
|
||
*** Bug 79414 has been marked as a duplicate of this bug. ***
Updated•8 years ago
|
Product: Core → Core Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•