Bug #161
closedHTTPS certificates invalid - duplicate serial
0%
Description
Generating a certificate and using it for HTTPS results in an unusable web interface.
"You have received an invalid certificate. Please contact the server administrator or email correspondent and give them the following information:
Your certificate contains the same serial number as another certificate issued by the certificate authority. Please get a new certificate containing a unique serial number.
(Error code: sec_error_reused_issuer_and_serial)"
Updated by Scott Ullrich about 15 years ago
Having trouble replicating this one again. It happened to me once when system -> advanced lost all of its settings but I have been unable to replicate that as well.
In addition, we default to https now and import a standard certificate on bootup.
Updated by Scott Ullrich about 15 years ago
How to reproduce:
Set the webgui logout timer to 1 minute.
Navigate to System -> Advanced
Wait 2 minutes.
Click submit.
Watch with awe as the entire form is wiped out.
Updated by Scott Ullrich about 15 years ago
- Status changed from New to Feedback
Back to feedback. https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/1e578a7f10843f470d2bf5274bbef695a14bb9d0 has caused the other breakage.
Updated by Ermal Luçi almost 15 years ago
Seems the cause is this
http://support.mozilla.com/en-US/kb/Certificate+contains+the+same+serial+number+as+another+certificate.
Committed a fix that seems to fix this issue.
Updated by Chris Buechler almost 15 years ago
- Status changed from Feedback to Resolved
Updated by Chris Buechler almost 15 years ago
- Status changed from Resolved to New
Still a problem. To replicate, just generate a new cert and switch the web interface to it.
Updated by Chris Buechler almost 14 years ago
- Status changed from Resolved to New
This has regressed it appears, after generating an internal certificate and changing the web interface to HTTPS, I end up with:
Your certificate contains the same serial number as another certificate issued by the certificate authority. Please get a new certificate containing a unique serial number. (Error code: sec_error_reused_issuer_and_serial)
Updated by Sander Naudts almost 14 years ago
I don't have this issue on the snapshot of today 20110106-0206. Running firefox 3.6.13.
Updated by Chris Buechler almost 14 years ago
- Status changed from New to Resolved
this is actually only possible if you manually screw with your certs in the config, it generates serials correctly under all normal circumstances.