← GoDaddy cases
Bugzilla #988633
Certificate Problem Report
GoDaddy: improperly encoded certificate issued by Go Daddy Secure Certification Authority
RESOLVED
GoDaddy
AI Summary
A certificate issued by GoDaddy was found to have an improperly encoded basic constraints extension, which included a default value that should not have been present. This issue caused compatibility problems with Mozilla's certificate validation. GoDaddy acknowledged the problem and committed to changing their certificate issuance practices to avoid similar issues in the future. The case has been resolved with the encoding issue reported as fixed.
Chronology
- Bug created regarding improper certificate encoding
- Discussion on the validity of the encoding and acknowledgment of the issue by GoDaddy
- Bug marked as resolved/fixed
Participants
Dana Keeler
Kathleen Wilson
Ryan Sleevi
GoDaddy representative
External References
Similar Local Cases
GoDaddy: New GoDaddy incorrect issuance bug appears to be regression of 2010 issue
GoDaddy's intermediate CA not in the Mozilla CA bundle
DigiCert: TI Trust Technologies Global CA issued certificate with no subject alternative name extension
DigiCert: ECCE 001 issuing certificates without subject alternative name extension
Hongkong Post e-Cert CA 1 - 10 issuing certificates without subject alternative name extension
DigiCert / InfoCert: Insufficient Serial Number Entropy
Firmaprofesional: Non-audited, non-technically-constrained intermediate certificates
GlobalSign CloudSSL CA - SHA256 - G3 issued certificate without required extensions