New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[fix] Use random serial number for CA #557

Merged
merged 2 commits into from Oct 24, 2018

Conversation

Projects
None yet
2 participants
@zamentur
Contributor

zamentur commented Oct 10, 2018

The problem

When a user reinstall a yunohost with the same domain, an error ssl is displayed on the browser:

An error occurred during a connection to 192.168.0.12. You have received
an invalid certificate. Please contact the server administrator or email
correspondent and give them the following information: Your certificate
contains the same serial number as another certificate issued by the
certificate authority. Please get a new certificate containing a unique
serial number. Error code: SEC_ERROR_REUSED_ISSUER_AND_SERIAL

Solution

Put a random serial number into the CA certificate.

PR Status

Ready BUT i have just test by applying manually the change on a yunohost instance.

How to test

...

Validation

  • Principle agreement 0/2 :
  • Quick review 0/1 :
  • Simple test 0/1 :
  • Deep review 0/1 :

zamentur added some commits Oct 10, 2018

@alexAubin

This comment has been minimized.

Member

alexAubin commented Oct 24, 2018

Yolomergin'

@alexAubin alexAubin changed the title from [fix] Set random serial number for CA to [fix] Use random serial number for CA Oct 24, 2018

@alexAubin alexAubin merged commit 1c5b93f into stretch-unstable Oct 24, 2018

2 checks passed

continuous-integration/travis-ci/pr The Travis CI build passed
Details
continuous-integration/travis-ci/push The Travis CI build passed
Details

@alexAubin alexAubin deleted the fix-serial-random-ca branch Oct 24, 2018

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment