Updates:
Status: Started
Comment #7 on issue 27497 by [email protected]: Error instead of SSL
unsecurity warning page
http://code.google.com/p/chromium/issues/detail?id=27497
tgulacsi78: in comment 5, you said https://gthomas.homelinux.org
generates an error message in the log, but shows up correctly.
By "shows up correctly", do you mean you get the expected SSL
certificate error page, or there is no SSL error page at all?
I tracked down why CERT_PKIXVerifyCert fails with err=-8187 for
https://www.unosoft.hu/mantis/. It is an NSS bug. That certificate
has an AIA (Authority Information Access) extension with an LDAP URL
that doesn't have a host name:
ldap:///CN=UNO-
SOFT%20RootCA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=unoso
ft,DC=local?cACertificate?base?objectClass=certificationAuthority
I will file an NSS bug report, and try to come up with a
workaround. I am not familiar with LDAP, so I don't know
if it's legal for LDAP URLs to omit host names.
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
