But I'm getting a different error code and message. The 110 bug may be related since they both talk of a Start SSL certificate. "SSL Client Certificate Fails with Firefox on Mac OS X". So I can't determine anything from the report.
In the 550 bug, I don't use the programs discussed, such as ChatZilla. (But it could well be a case of me being too dumb to operate Firefox properly).ĭarwin 12.5.0 Darwin Kernel Version 12.5.0: Sun Sep 29 13:33: root:xnu-2050.48.12~1/RELEASE_X86_64 x86_64 So I don't believe I've inadvertently disabled something. I searched Preferences -> Security and Preferences -> Advanced, and I could not find anywhere to enable/disable Keychain access. I'm fairly certain the certificate and private key are well formed. I was able to verify the certificate and private key with both Peter Guttman's `dumpasn1` and OpenSSL's `x509` utility. Unfortunately, Safari is broken for me at the moment. In the past, this worked fine with Safari. Firefox sends the Certificate message as expected after the server sends the Server Done message, but the client's Certificate message has 0 certificates.Ī screen capture of the relevant Wireshark frame is available on (see below under "Additional Information").įirefox should have sent the certificate for the site.Īdditional info: screen captures of the issue can be found at. (Error code: ssl_error_handshake_failure_alert)Ī Wireshark trace shows Firefox never sends the certificate for the site. SSL peer was unable to negotiate an acceptable set of security parameters. The reasons given were:Īn error occurred during a connection to. I visited a secure area ( ), and clicked on the upper left button "Authenticate".įirefox could not establish a secure channel. Then, on the Access tab, ensure the Firefox binary is listed. To do so, select "Keychain Access", select the Certificate and then "Get Info". The user certificate and private key were installed 6 months or 1 year prior to installing Firefox.Įnsure Firefox has access to the certificate and private key. In my case, I have a Startcom ( ) user certificate and private key already installed.
Import a certificate and private key into OS X's Keychain.
0 kommentar(er)
