CyberVillainsCA.cer expires in in March 2012 #3011

Closed
lukeis opened this Issue Mar 3, 2016 · 20 comments

Comments

Projects
None yet
1 participant
@lukeis
Member

lukeis commented Mar 3, 2016

Originally reported on Google Code with ID 3011

The cybervillains cert is set to expire at the end of March of 2012.  I can't speak
for others, but if I don't have a new, valid cert by that time, my company will be
in trouble.  Can we get a new cert ASAP so there is time to test and deploy it for
people who have software that relies on it?

Reported by evillego6 on 2011-12-06 22:55:25

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member

Reported by ajaykemparaj on 2011-12-07 07:44:02

  • Labels added: Component-RC
Member

lukeis commented Mar 3, 2016

Reported by ajaykemparaj on 2011-12-07 07:44:02

  • Labels added: Component-RC
@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
We're aware of the problem and looking into getting a new cert.

Reported by simon.m.stewart on 2011-12-07 11:04:31

Member

lukeis commented Mar 3, 2016

We're aware of the problem and looking into getting a new cert.

Reported by simon.m.stewart on 2011-12-07 11:04:31

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member

Reported by ajaykemparaj on 2012-01-15 20:01:44

Member

lukeis commented Mar 3, 2016

Reported by ajaykemparaj on 2012-01-15 20:01:44

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
This is a big deal to me as well.  I cannot wait until the last minute for this issue
to be taken care of.  I need time to make some changes to my software across multiple
servers around the country remotely.  If the new cert will not be ready until late
March, I would need to try to figure out another way around the problem myself in the
meantime in order to guarantee that no time passes where I do not have a valid CA.
 Obviously, I would rather not because I currently do not know very much about SSL
certificate authorities.  Is there an estimate for when the new certificate will be
created?  

Reported by ShacJames on 2012-01-30 16:11:20

Member

lukeis commented Mar 3, 2016

This is a big deal to me as well.  I cannot wait until the last minute for this issue
to be taken care of.  I need time to make some changes to my software across multiple
servers around the country remotely.  If the new cert will not be ready until late
March, I would need to try to figure out another way around the problem myself in the
meantime in order to guarantee that no time passes where I do not have a valid CA.
 Obviously, I would rather not because I currently do not know very much about SSL
certificate authorities.  Is there an estimate for when the new certificate will be
created?  

Reported by ShacJames on 2012-01-30 16:11:20

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
One of the contributors is already looking into upgrading the certificate. We don't
want to leave it to the last minute either!

Reported by simon.m.stewart on 2012-01-30 16:32:15

Member

lukeis commented Mar 3, 2016

One of the contributors is already looking into upgrading the certificate. We don't
want to leave it to the last minute either!

Reported by simon.m.stewart on 2012-01-30 16:32:15

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
Yes, we hope to have something ready very soon. Stand by!

Reported by patrick@lightbody.net on 2012-01-30 18:46:20

Member

lukeis commented Mar 3, 2016

Yes, we hope to have something ready very soon. Stand by!

Reported by patrick@lightbody.net on 2012-01-30 18:46:20

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
Hi all,

I think I managed to generate a binary patch with all it's needed to have new certificates.
Because I don't have svn commit rights, I did like this:

   "svn diff --force --diff-cmd /usr/bin/diff -x -au > ../filename.patch"

We tested those certificates in Neustar and seems to work: all our regression tests
covering SSL passed just fine.

Unfortunately, I'm not a big expert on SSL so another pair of eyes will surely be useful.

Most of the work has been done by Mark Watson (watsonm AT G M A I L dot C O M): I have
just "ironed" it a bit and prepared the patch.

Thanks
Ivan De Marino

Reported by detronizator on 2012-02-05 03:15:28


- _Attachment: [cybervillains_certs_and_cert_generator-20120204.patch.gz](https://storage.googleapis.com/google-code-attachments/selenium/issue-3011/comment-7/cybervillains_certs_and_cert_generator-20120204.patch.gz)_
Member

lukeis commented Mar 3, 2016

Hi all,

I think I managed to generate a binary patch with all it's needed to have new certificates.
Because I don't have svn commit rights, I did like this:

   "svn diff --force --diff-cmd /usr/bin/diff -x -au > ../filename.patch"

We tested those certificates in Neustar and seems to work: all our regression tests
covering SSL passed just fine.

Unfortunately, I'm not a big expert on SSL so another pair of eyes will surely be useful.

Most of the work has been done by Mark Watson (watsonm AT G M A I L dot C O M): I have
just "ironed" it a bit and prepared the patch.

Thanks
Ivan De Marino

Reported by detronizator on 2012-02-05 03:15:28


- _Attachment: [cybervillains_certs_and_cert_generator-20120204.patch.gz](https://storage.googleapis.com/google-code-attachments/selenium/issue-3011/comment-7/cybervillains_certs_and_cert_generator-20120204.patch.gz)_
@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
Thanks Ivan! I just checked it in. Patch looks good. Might be good to also get it patched
for http://opensource.webmetrics.com/browsermob-proxy/ too, since it has the same code
(ping me and I can get you Git commit access, or just send me a pull request).

Reported by plightbo on 2012-02-05 06:14:24

Member

lukeis commented Mar 3, 2016

Thanks Ivan! I just checked it in. Patch looks good. Might be good to also get it patched
for http://opensource.webmetrics.com/browsermob-proxy/ too, since it has the same code
(ping me and I can get you Git commit access, or just send me a pull request).

Reported by plightbo on 2012-02-05 06:14:24

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
Just forked it: will submit a pull request asap.

Reported by detronizator on 2012-02-05 06:21:29

Member

lukeis commented Mar 3, 2016

Just forked it: will submit a pull request asap.

Reported by detronizator on 2012-02-05 06:21:29

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
This was submitted as r15831 and included in Selenium 2.19. Please test your sites using
this version of Selenium.

Marking this issue as Fixed, but please reopen if you experience new issues with the
cert.

Reported by simon.m.stewart on 2012-02-08 21:07:34

  • Status changed: Fixed
Member

lukeis commented Mar 3, 2016

This was submitted as r15831 and included in Selenium 2.19. Please test your sites using
this version of Selenium.

Marking this issue as Fixed, but please reopen if you experience new issues with the
cert.

Reported by simon.m.stewart on 2012-02-08 21:07:34

  • Status changed: Fixed
@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
Hi,

I noticed that in the commit the "Generator.java" is missing: wouldn't be helpful to
keep it there? I left some guidelines in the class internal doc just for that.

Reported by detronizator on 2012-02-09 00:06:03

Member

lukeis commented Mar 3, 2016

Hi,

I noticed that in the commit the "Generator.java" is missing: wouldn't be helpful to
keep it there? I left some guidelines in the class internal doc just for that.

Reported by detronizator on 2012-02-09 00:06:03

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
Ivan - yes, if you have if please add the patch and I'll get it in.

Reported by patrick@lightbody.net on 2012-02-09 00:17:06

Member

lukeis commented Mar 3, 2016

Ivan - yes, if you have if please add the patch and I'll get it in.

Reported by patrick@lightbody.net on 2012-02-09 00:17:06

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
The patch is attached above.
It contained what has been added by Simon + the "utility" to use in the future to generate
new certs.

Reported by detronizator on 2012-02-09 00:22:30

Member

lukeis commented Mar 3, 2016

The patch is attached above.
It contained what has been added by Simon + the "utility" to use in the future to generate
new certs.

Reported by detronizator on 2012-02-09 00:22:30

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
OK, yeah, sorry I missed that. Clearly my patching skills are weak :) It's checked in
now. Fortunately it wasn't necessary for the 2.19.0 release, but it'll definitely be
there for the next one just in case someone needs it.

Reported by patrick@lightbody.net on 2012-02-09 06:56:19

Member

lukeis commented Mar 3, 2016

OK, yeah, sorry I missed that. Clearly my patching skills are weak :) It's checked in
now. Fortunately it wasn't necessary for the 2.19.0 release, but it'll definitely be
there for the next one just in case someone needs it.

Reported by patrick@lightbody.net on 2012-02-09 06:56:19

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
How do you get the cybervilliansCA certificate by downloading the patch file?

Can anyone please help?/

Reported by seleniumlover123 on 2012-04-02 17:59:39

Member

lukeis commented Mar 3, 2016

How do you get the cybervilliansCA certificate by downloading the patch file?

Can anyone please help?/

Reported by seleniumlover123 on 2012-04-02 17:59:39

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
Just update to use version >=2.20

Reported by detronizator on 2012-04-03 04:11:14

Member

lukeis commented Mar 3, 2016

Just update to use version >=2.20

Reported by detronizator on 2012-04-03 04:11:14

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
There are issues with 2.20.0, anyone who is using it without any hassles? 
I get the following: 
1. Browser time out accessing the site to be tested (https site ofcourse).
2. Peak cpu utilization by java.exe
3. it randomly works for my surprise. What makes it to work is not known. 


Reported by rajashekhara.g on 2012-04-03 09:43:30

Member

lukeis commented Mar 3, 2016

There are issues with 2.20.0, anyone who is using it without any hassles? 
I get the following: 
1. Browser time out accessing the site to be tested (https site ofcourse).
2. Peak cpu utilization by java.exe
3. it randomly works for my surprise. What makes it to work is not known. 


Reported by rajashekhara.g on 2012-04-03 09:43:30

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
@17: Perf issues with HTTPS in 2.20 should be fixed by r16442 and be in the upcoming
2.21 release.

Reported by jari.bakken on 2012-04-05 11:36:18

Member

lukeis commented Mar 3, 2016

@17: Perf issues with HTTPS in 2.20 should be fixed by r16442 and be in the upcoming
2.21 release.

Reported by jari.bakken on 2012-04-05 11:36:18

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member
I'm having what appears to be a similar issue with safari and chrome on 2.25.0.  I'm
using selenium 2 for chrome but I do need to find a way to use safari.  Any suggestions?
I tried running the safariproxy with the standalone server on trustAllSSLCertificates
mode but I'm still having issues

Reported by bth8490 on 2012-10-19 21:13:24

Member

lukeis commented Mar 3, 2016

I'm having what appears to be a similar issue with safari and chrome on 2.25.0.  I'm
using selenium 2 for chrome but I do need to find a way to use safari.  Any suggestions?
I tried running the safariproxy with the standalone server on trustAllSSLCertificates
mode but I'm still having issues

Reported by bth8490 on 2012-10-19 21:13:24

@lukeis

This comment has been minimized.

Show comment
Hide comment
@lukeis

lukeis Mar 3, 2016

Member

Reported by luke.semerau on 2015-09-17 18:14:23

  • Labels added: Restrict-AddIssueComment-Commit
Member

lukeis commented Mar 3, 2016

Reported by luke.semerau on 2015-09-17 18:14:23

  • Labels added: Restrict-AddIssueComment-Commit

@lukeis lukeis closed this Mar 3, 2016

@lukeis lukeis locked and limited conversation to collaborators Mar 4, 2016

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.