Bug 447969

Summary: Unable to add exception for certificates which lack a Subject and Issuer field
Product: Red Hat Enterprise Linux 5 Reporter: Michael Solberg <msolberg>
Component: firefoxAssignee: Christopher Aillon <caillon>
Status: CLOSED CURRENTRELEASE QA Contact: desktop-bugs <desktop-bugs>
Severity: medium Docs Contact:
Priority: medium    
Version: 5.2CC: gecko-bugs-nobody, kengert
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: 3.0-2 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-07-02 20:12:00 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
A self-signed certificate with no Subject or Issuer none

Description Michael Solberg 2008-05-22 17:52:35 UTC 
Description of problem:

When attempting to browse a site which uses a certificate lacking a Subject and
Issuer field, the user is prompted to add an exception to certificate checking.

However, when trying to confirm the exception, nothing happens.

Version-Release number of selected component (if applicable):

firefox-3.0-0.beta5.6.el5

How reproducible:

Every time.

Steps to Reproduce:

1. Navigate to a site with an affected self-signed certificate.
2. "Secure Connection Failed" page is displayed.
3. Click "Add Exception"
4. Click "Get Certificate"
5. Click "Confirm Security Exception"
  
Actual results:

Nothing happens

Expected results:

Exception would be added to the list and the user would be able to browse the site.

Additional info:

Attached is a certificate that exhibits the problem.

Also, I know this is kind of a silly bug.  The problem is obviously with the
certificate.  But - if Firefox won't confirm the exception, it should at least
tell you why it's being stubborn.
Comment 1 Michael Solberg 2008-05-22 17:52:35 UTC 
Created attachment 306407 [details]
A self-signed certificate with no Subject or Issuer
Comment 2 Matěj Cepl 2008-05-22 21:22:33 UTC 
Do you have some URL to the website presenting this problem, please?

Thank you very much.
Comment 3 Michael Solberg 2008-05-23 13:19:02 UTC 
(In reply to comment #2)
> Do you have some URL to the website presenting this problem, please?
> 
> Thank you very much.

The websites presenting problems are all private network servers which provide
Radius authentication services.  The certificate I've attached will present the
problem, however.
Comment 4 Kai Engert (:kaie) (inactive account) 2008-05-23 16:39:34 UTC 
I think this got fixed recently in upstream Firefox, the official Firefox 3 RC 1
binary would work.

So, once we update our RPMs to a newer Firefox version, this bug should be fixed.

https://bugzilla.mozilla.org/show_bug.cgi?id=406954
Comment 5 Michael Solberg 2008-05-27 20:32:49 UTC 
I've confirmed that the issue does not exist in 3RC1.

Thanks!

Michael.
Comment 6 Michael Solberg 2008-07-02 20:12:00 UTC 
I'm unable to reproduce with firefox-3.0-2.el5.

Thanks!