← Internet Security Research Group cases
Bugzilla #1753123 Certificate Problem Report

Let's Encrypt: Failure to provide OCSP Responses for some certificates

RESOLVED FIXED Internet Security Research Group
AI Summary

Let's Encrypt identified a failure to provide OCSP responses for a small number of certificates due to a bug in their system. This issue was discovered while revoking certificates, leading to the realization that 132 certificates issued between December 2, 2021, and January 29, 2022, lacked corresponding OCSP data. The CA has since populated the missing OCSP responses and implemented fixes to prevent future occurrences. The incident has been resolved with all affected certificates now having available OCSP responses.

Model: gpt-4o-mini Generated: 2026-06-13 21:16 UTC Confidence: 1.00
Chronology
  1. Bug introduced to Boulder
  2. Bug deployed to Production (Incident Begins)
  3. Discovery of missing OCSP responses
  4. OCSP responses generated for affected certificates
  5. Audit of error checks completed
  6. Case closure proposed
Participants
Aaron Gable Brett Wilson
External References
Original Bugzilla Case bugzilla.mozilla.org github.com github.com github.com github.com github.com
Similar Local Cases
#1838667 RESOLVED Certificate Problem Report Opened 2023-06-15 · Closed 2023-07-05 · 66% similar
Let's Encrypt: Duplicate Serial Numbers
AI Summary CA Owner
#1793114 RESOLVED Certificate Problem Report Opened 2022-09-30 · Closed 2023-02-22 · 65% similar
Let's Encrypt: Incomplete and Inconsistent CRLs
AI Summary CA Owner
#1729567 RESOLVED Certificate Problem Report Opened 2021-09-07 · Closed 2023-02-22 · 65% similar
Let's Encrypt: Delay updating OCSP responses
AI Summary CA Owner
#1809382 RESOLVED Certificate Problem Report Opened 2023-01-10 · Closed 2023-09-29 · 61% similar
CFCA: Certificate with wrong crlDistributionPoints
AI Summary CA Owner
#1771238 RESOLVED Certificate Problem Report Opened 2022-05-25 · Closed 2023-02-22 · 60% similar
Certainly: Serving Expired OCSP Responses
AI Summary CA Owner
#1886876 RESOLVED Certificate Problem Report Opened 2024-03-21 · Closed 2024-04-17 · 59% similar
Let's Encrypt: keyCompromise key blocking deviation from CP/CPS
AI Summary CA Owner
#1715672 RESOLVED Certificate Problem Report Opened 2021-06-10 · Closed 2023-02-22 · 59% similar
Let's Encrypt: Failure to revoke for Certificate Lifetime Incident
AI Summary CA Owner
#1751984 RESOLVED Certificate Problem Report Opened 2022-01-25 · Closed 2023-02-22 · 59% similar
Let's Encrypt: TLS Using ALPN TLS Version and OID
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action