Hi Utkarsh, pulled your .deb (only the libnss3_3.26.2-1.1+deb9u4~ppa1_amd64.deb) and that fixed the issue and everything works as before again :)
Thanks a lot, Tobias On Tue, 7 Dec 2021 14:14:30 +0530 Utkarsh Gupta <utka...@debian.org> wrote: > Hi Tobias, > > On Mon, Dec 6, 2021 at 8:48 PM Tobias Kalleder <spam...@kalleder.net> wrote: > > * What led up to the situation? > > automatic security update to libnss3 (2:3.26.2-1.1+deb9u3) Thu, 02 > > Dec 2021 17:05:48 +0530Thu, 02 Dec 2021 17:05:48 +0530 > > prevents chromium 73.0.3683.75 from most if not all ssl connections > > * What exactly did you do (or not do) that was effective (or > > ineffective)? > > chromium in headless mode not loading css from external resources > > and throws errors, see below > > * What was the outcome of this action? > > external css/js files loaded from cloudflare cdn do not load at all > > [1206/150811.360650:ERROR:cert_verify_proc_nss.cc(974)] > > CERT_PKIXVerifyCert for cdnjs.cloudflare.com failed err=-8182 > > [1206/150811.362285:ERROR:ssl_client_socket_impl.cc(962)] handshake > > failed; returned -1, SSL error code 1, net_error -207 > > > > * What outcome did you expect instead? > > ssl connections to cdn to work in order to load css/js resources > > Thank you for the bug report. I did the upload and I am sorry that it > didn't work out as expected. Whilst I am not 100% sure why this > could've happened, I, however, have a suspicion on the missing > "breaks", which could've plausibly caused this. > > Would you mind pulling in the .debs from here: > https://people.debian.org/~utkarsh/lts/nss/ > and testing this out, please? Let me know how does that behave? Do you > still see the regression? If so, could you please provide me the steps > to reproduce? > > Thank you! > > > - u > >