Closed
Bug 94499
Opened 24 years ago
Closed 24 years ago
Error restoring a PKCS#12 file generated with OpenSSL using Manage Certificates
Categories
(Core Graveyard :: Security: UI, defect, P1)
Tracking
(Not tracked)
VERIFIED
FIXED
psm2.1
People
(Reporter: aleix, Assigned: javi)
Details
Attachments
(4 files)
|
3.47 KB,
application/octet-stream
|
Details | |
|
2.82 KB,
application/octet-stream
|
Details | |
|
2.62 KB,
patch
|
Details | Diff | Splinter Review | |
|
4.41 KB,
patch
|
Details | Diff | Splinter Review |
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.3) Gecko/20010801
BuildID: 2001080104
I get the message: "Failed to restore PKCS#12 file for unknown reasons". I have
tried on other browsers like Netscape 4.78 and works properly, it doesn't work
on Netscape 6 either.
Reproducible: Always
Steps to Reproduce:
1.Open the certificate manager
2.Restore a .p12 file generated with openssl 0.9.6b
Actual Results: I get the message: Failed to restore PKCS#12 file for unknown
reasons
Expected Results: Import the certificate correctly
I'm running Mozilla under a Debian GNU/Linux system with all libraries updated
almost every day.
|
||
Comment 1•24 years ago
|
||
Confirming. I see this on Win98SE as well.
Updating Platform, OS to ALL and updating summary to
"Error restoring a PKCS#12 file generated with OpenSSL using Manage
Certificates" for clarity.
Status: UNCONFIRMED → NEW
Ever confirmed: true
OS: Linux → All
Hardware: PC → All
Summary: Restoring a PKCS#12 file generated with OpenSSL using Manage Certificates → Error restoring a PKCS#12 file generated with OpenSSL using Manage Certificates
|
|
||
Comment 2•24 years ago
|
||
Chris (or reporter), can you attach a p12 file with a cert so that we have a
test case?
-> javi
P2
Assignee: ssaux → javi
Keywords: nsenterprise
Priority: -- → P2
Target Milestone: --- → 2.1
Version: 1.01 → 2.1
|
|
||
Comment 3•24 years ago
|
||
Stéphane, I just used the valid cert (*.p12 file) exported from 4.x, and tried
to import it into the 2001-08-08 trunk build by clicking on the 'Restore'
Button. It would not restore to my cert database or 'cardware'.
|
|
Assignee | |
Comment 5•24 years ago
|
||
I just tried this on Linux and it worked for me with a build updated this morning.
What build/platforms are you running? What was the length of the password you
chose?
Ideally, I'd like to get a copy of the .p12 files in question.
|
|
Assignee | |
Comment 6•24 years ago
|
||
I generated a PKCS#12 file using 4.78 and successfully imported the file into my
build from this morning.
To reporters, I say
1) Make sure you've got the password right
2) Make sure FIPS mode is *off* (You can enable/disable FIPS mode by going to
Edit->Preferences->Privacy and Security->Certificates->Manage Security Devices.
Until someone gives me a p12 file that shows this behavior, I can't work on this
any longer.
|
|
||
Comment 7•24 years ago
|
||
Javi,
On today's (2001-08-09-07-trunk) Win32 build [Win98SE], with the file you
supplied me (test.p12) & disabling FIPS & verifying I am using the correct
password for my device[s], attempting to restore test.p12 is SUCCESSFUL for the
Software Security Device, but FAILS (see error message below) for iButton.
Error Message:
"Failed to restore the PKCS #12 file for unknown reasons."
I will test LinRH6.2, MacOS X, and MacOS 9.0 next.
|
|
||
Comment 8•24 years ago
|
||
LinRH6.2, MacOS 9 & X all restore with no problems to the Software Security
Device on today's (2001-08-09-xx-trunk) bits using test.p12.
I do not have iButton or a reasonable facsimile on these platforms, so I could
not test the restore to cardware.
|
|
||
Comment 9•24 years ago
|
||
Chris, Ibuttons fill up. You may have encountered that.
I'm going to add the p12 file as an attachment to this bug.
I'll also try to load it up on my hardware device.
|
|
||
Comment 10•24 years ago
|
||
|
|
||
Comment 11•24 years ago
|
||
Was able to import the test p12 file provided as an attachment successfully in
an IButton hardware device.
Marking worksforme.
Status: NEW → RESOLVED
Closed: 24 years ago
Resolution: --- → WORKSFORME
|
|
Reporter | |
Comment 12•24 years ago
|
||
|
|
Reporter | |
Comment 13•24 years ago
|
||
passowrd for attachment file is mozilla
|
|
Assignee | |
Comment 14•24 years ago
|
||
supplied p12 file works with Netscape 4.76 and not with Mozilla
Status: RESOLVED → REOPENED
Resolution: WORKSFORME → ---
|
|
Assignee | |
Comment 15•24 years ago
|
||
|
|
||
Comment 16•24 years ago
|
||
The variable count is initialized to 1 and there is a check for count > 1 but I
can't figure out where count is updated in the while(1) loop. Also, a comment
would be useful to describe what's happening in the while(1) loop.
|
|
Assignee | |
Comment 17•24 years ago
|
||
|
|
||
Comment 18•24 years ago
|
||
r=ddrinan.
|
|
||
Comment 19•24 years ago
|
||
If you import the same p12 file repeatedly, will you end up with the same cert
added multiple times to the db with different nicknames? Is that ok?
|
|
Assignee | |
Comment 20•24 years ago
|
||
If you import the same file, you will get an error that says "This key already
exists in your database." So that's not an issue.
|
|
||
Comment 21•24 years ago
|
||
Yuck.
sr=blizzard
|
|
Assignee | |
Comment 22•24 years ago
|
||
Patch checked in.
Status: REOPENED → RESOLVED
Closed: 24 years ago → 24 years ago
Resolution: --- → FIXED
|
|
||
Comment 23•24 years ago
|
||
Marking VERIFIED FIXED on:
- MacOS91 2001-08-14-04-trunk (commercial)
- MacOS_X 2001-08-14-05-trunk (commercial)
- LinRH62 2001-08-14-07-trunk (commercial)
- Win98SE 2001-08-14-06-trunk (commercial)
Status: RESOLVED → VERIFIED
|
||
Updated•9 years ago
|
Product: Core → Core Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•