← DigiCert cases
Bugzilla #1577014
Certificate Problem Report
DigiCert: OCSP services returns 1 byte
RESOLVED
DigiCert
AI Summary
DigiCert encountered an issue where their OCSP service returned a 1-byte response instead of a valid OCSP response for certain certificates. This was due to a server misconfiguration that resulted in an incorrect default response being cached. After identifying the root cause, DigiCert implemented a fix and ensured that all pre-certificates would be enabled for OCSP to prevent future occurrences. The issue has since been resolved, and the OCSP service is now functioning correctly.
Chronology
- Bug reported regarding invalid OCSP response
- Root cause identified and fix implemented
- Patch deployed to production
- Issue confirmed resolved and bug closed
Participants
Curt
Jeremy Rowley
Rick Roos
Ryan Sleevi
External References
Similar Local Cases
DigiCert: delayed publication of revocation information
DigiCert: Failure to revoke key-compromised certificate
DigiCert: Issuance of Cert with Compromised Key
DigiCert: CAA Checking Issue
DigiCert: Key Size Not Divisible By 8
DigiCert: & character in a printableString in ICA
DigiCert: JOI Issue
DigiCert: Failure to disclose Unconstrained Intermediate within 7 Days