Before I open a bug on this, the latest firefox/nss software that is in F36 - is it not accepting SSL certificates without matching subjectAlternativeName on purpose?
I still have to complete more tests, but it seems that if SSL certificate is issued to CN abc.example.com and if that name is not mentioned in SAN, Firefox complains that the certificate is not for the right domain. This is all only with most recent updates.
Anyone else seeing similar stuff?
I still have to complete more tests, but it seems that if SSL certificate is issued to CN abc.example.com and if that name is not mentioned in SAN, Firefox complains that the certificate is not for the right domain. This is all only with most recent updates.
Anyone else seeing similar stuff?
--
Bojan
_______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
