[tbb-bugs] #18218 [Tor Browser]: RapidSSL SHA256 CA - G3 (Error code: sec_error_unknown_issuer)

Tor Bug Tracker & Wiki blackhole at torproject.org
Tue Feb 2 18:52:18 UTC 2016

#18218: RapidSSL SHA256 CA - G3 (Error code: sec_error_unknown_issuer)
 Reporter:  bugzilla     |          Owner:  tbb-team
     Type:  defect       |         Status:  new
 Priority:  Medium       |      Milestone:
Component:  Tor Browser  |        Version:
 Severity:  Normal       |     Resolution:
 Keywords:               |  Actual Points:
Parent ID:               |         Points:
  Sponsor:               |

Comment (by cypherpunks):

 It was working on a TBB installation, where disk storage is not disabled.
 On TBB with disk storage disabled, the certificate is invalid.

 They seem to serve a certificate if an incomplete chain.

 Apparently, intermediate certificates are stored by Firefox in cert8.db.
 Presumably, some previous web site included the intermediate certificate
 and it got stored in cert8.db and thus things are working for this
 installation. If I delete the cert8.db, the RapidSSL certificate fails.

Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18218#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tbb-bugs mailing list