← GoDaddy cases
Bugzilla #708229 · Certificate Problem Report
GoDaddy's intermediate CA not in the Mozilla CA bundle
GoDaddy · RESOLVED
AI Summary
A user reported that GoDaddy's intermediate CA certificate is missing from the Mozilla CA bundle, causing SSL handshake failures for GoDaddy class 2 certificates. The user expected the certificate to be included in the bundle to resolve the issue. However, it was clarified that intermediate certificates are not included in the Mozilla root store and that web servers must send the complete certificate chain. The case was ultimately marked as invalid.
Chronology
- User reported missing GoDaddy intermediate CA certificate
- Discussion on the nature of CA bundles and intermediate certificates
- Case marked as invalid
Participants
Synthead
Kathleen Wilson
Matti Mversen
Gerv
External References
Similar Local Cases
GoDaddy: improperly encoded certificate issued by Go Daddy Secure Certification Authority
GoDaddy: New GoDaddy incorrect issuance bug appears to be regression of 2010 issue
EV SSL certificate (and OCSP response) for www.camerfirma.com fails to meet EV Guidelines
StartCom: IV without localityName or stateOrProvinceName
StartCom: public exponent is 1
FIrefox 61.x 64bit version missing DIGICERT or "RapidSSL RSA CA 2018"
TurkTrust: Non-audited, non-technically-constrained intermediate certs
StartCom cert not working in Firefox 4 beta