Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 97258 - Firefox crashes when accepting new certificate permanently on taschenonkel.de
Summary: Firefox crashes when accepting new certificate permanently on taschenonkel.de
Status: RESOLVED UPSTREAM
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: x86 Linux
: High normal (vote)
Assignee: Mozilla Gentoo Team
URL: https://taschenorakel.de/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-06-27 15:03 UTC by Mathias Hasselmann
Modified: 2006-12-18 20:00 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Mathias Hasselmann 2005-06-27 15:03:34 UTC
Firefox crashes when accepting new certificate permanently on taschenonkel.de
https://bugzilla.mozilla.org/show_bug.cgi?id=298906 has a hotfix for this issue.

Reproducible: Always
Steps to Reproduce:
0) Load https://taschenorakel.de/
1) In the cert dialogue, choose "Accept this certificate permanantly" and click OK
2) Crash!
Comment 1 Jory A. Pratt 2005-12-11 15:36:06 UTC
I can replicate with your site alone unless you can come up with another site
that causes such an issue nothing I can do but sit here and believe it is a web
site issue not browser. I am gonna close bug report as NEEDINFO before I can go
any further if you disagree you can reopen and address your concerns.
Comment 2 Mathias Hasselmann 2005-12-14 15:12:38 UTC
A segmentation fault *NEVER* is a web-site issue. You really should try to
integrate the patch from upstream, before someone with "leet haxor skills"
discovers those bug reports and constructs an exploit for this problem.
Comment 3 Stuart Longland (RETIRED) gentoo-dev 2006-09-25 07:59:51 UTC
No crash here... but it seems the server doesn't want my business (connection times out).

That said... I recently upgraded the security certificate on two servers I run (using self-signed certificates) and had no issues.

https://stuartl.longlandclan.hopto.org/blog/ <-- That's my blog accessible via https.  I just had the cert dialogue appear when visiting that site (as I've never tried accessing my blog via https before), and so far, no crash.

So it's not Firefox having difficulty with self-signed certificates per-se.  (And until tashenorakel.de wakes up and answers my TCP SYN, I won't know otherwise).

Given that it's apparently "FIXED" upstream, perhaps you'd like to consider trying a newer version of Firefox and see if this is indeed the case?

Thanks.
Comment 4 Mathias Hasselmann 2006-09-27 01:03:08 UTC
This bug cannot be triggered by taschenorakel.de anymore, because I've replaced the certificate in the meantime. To trigger it your web-server has to supply a certificate containg an excessive long CN record (> 250 chars?). Had such a CN because the limitations of TLS to handle virtual hosts (CN=taschenorakel.de|www.taschenorakel.de|mail.taschenorakel.de|.... - you get the picture).

AFAIR installing the fixed version lib libnss fixed the problem for me, but I am not sure. Too long ago that I reported this security problem. If you care you should create such a certificate on you own and check back.
Comment 5 Stuart Longland (RETIRED) gentoo-dev 2006-09-27 06:08:04 UTC
Ahh okay... so the issue is more of the length of the Common Name (CN) field.  This is a useful clue, as it suggests a boundary checking or buffer overflow issue -- which has some particularly nasty implications if you think about it.

This is something I will look into.  To be honest, I didn't know you could list multiple common-names, except using wildcard syntax (you'll notice my blog uses a CN of *.longlandclan.hopto.org).  But now that I know it's possible, I'll look into this further.

What can I say, you learn something new every day. :-D
Comment 6 Christian Marie (RETIRED) gentoo-dev 2006-12-18 20:00:32 UTC
Resolving as upstream via anarchy.