On Thu, Jan 08, 2009 at 08:52:51AM -0000, Piotr Czachur wrote: > Pasting new comments from > http://sourceforge.net/forum/forum.php?thread_id=2817179&forum_id=439591 > > RE: YaSSL doesn't support certs from mozilla (New) > By: Todd Ouska (touskaProject Admin) - 2009-01-07 21:17 > Hi, > > Yes, yaSSL supports PEM certificates from the Mozilla truststore. The problem > I'm getting in duplicating this report is that both geotrust.com and Firefox > 3.0.5 (Mozilla 5.0) are giving me the same cert. > > MD5: 6c4c4791d77d8848f0907511a0bf686e > > The same one you're getting from geotrust.com. > > Can you send me the ubuntu cert to todd at yassl.com . And I'll be happy to > look at it.
Cert attached. It looks like Mozilla's nss converts the internal representation to export a valid certificate with the appropriate line length. When I export the PEM from the certdata.txt included in the source I get line lengths of four chars less in the base64 data. If I just join the lines and re-wrap them at 64 the diff to the cert file from the CA is empty. So the only "problem" here is that yassl cannot cope with non-RFC- compliant line lengths in the base64 data and Mozilla should fix the certificate data in the source. Kind regards, Philipp Kern ** Attachment added: "Equifax_Secure_Global_eBusiness_CA.crt" http://launchpadlibrarian.net/21005515/Equifax_Secure_Global_eBusiness_CA.crt -- ca-certificates differ from those provided by root CA https://bugs.launchpad.net/bugs/314710 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
