Firefox hangs on DNS validation. #1

新しいイシュー

クローズ

joshが2018-08-23 22:54:21 +00:00に作成 · 8件のコメント

josh がコメント 2018-08-23 22:54:21 +00:00

共同作業者

リンクをコピー

Chrome is fine, but Firefox hangs on DNS domain validation Verifying Domains... (give us 5 seconds or so...)

Chrome is fine, but Firefox hangs on DNS domain validation `Verifying Domains... (give us 5 seconds or so...)`

coolaj86 がコメント 2018-08-23 23:07:41 +00:00

オーナー

リンクをコピー

Open up the JavaScript console and check the error message and let us know what that is please.

We’re not handling errors properly yet.

Open up the JavaScript console and check the error message and let us know what that is please. We’re not handling errors properly yet.

jshaver がコメント 2018-08-23 23:13:01 +00:00

共同作業者

リンクをコピー

Confirmed, I see the same problem in Firefox. It could be one of my recent changes. I'll take a look.

Confirmed, I see the same problem in Firefox. It could be one of my recent changes. I'll take a look.

jshaver が自身を担当者に設定 2018-08-23 23:13:13 +00:00

jshaver がコメント 2018-08-23 23:58:27 +00:00

共同作業者

リンクをコピー

It wasn't what I thought it was. It looks like this is the line throwing a DOMException:

return crypto.subtle.importKey(
          "jwk"
        , info.serverJwk
        , wcOpts
        , true
        , ["sign"]
).then(function (privateKey) {
	return window.crypto.subtle.exportKey("pkcs8", privateKey);
})

window.crypto.suble.exportKey is throwing "NotSupportedError: Operation is not supported".

Looks like there are a few bug reports already:

https://bugzilla.mozilla.org/buglist.cgi?quicksearch=export+pkcs8

It wasn't what I thought it was. It looks like this is the line throwing a DOMException: ```javascript return crypto.subtle.importKey( "jwk" , info.serverJwk , wcOpts , true , ["sign"] ).then(function (privateKey) { return window.crypto.subtle.exportKey("pkcs8", privateKey); }) ``` window.crypto.suble.exportKey is throwing "NotSupportedError: Operation is not supported". Looks like there are a few bug reports already: [https://bugzilla.mozilla.org/buglist.cgi?quicksearch=export+pkcs8](https://bugzilla.mozilla.org/buglist.cgi?quicksearch=export+pkcs8)

coolaj86 がコメント 2018-08-24 00:01:36 +00:00

オーナー

リンクをコピー

I don’t think we actually need that method. I was just using it for debugging if I recall.

I don’t think we actually need that method. I was just using it for debugging if I recall.

jshaver がコメント 2018-08-24 00:03:28 +00:00

共同作業者

リンクをコピー

Isn't it whats giving us PKCS #8 format for the private key? I'll see what it looks like without it.

Isn't it whats giving us PKCS #8 format for the private key? I'll see what it looks like without it.

coolaj86 がコメント 2018-08-24 01:14:05 +00:00

オーナー

リンクをコピー

I’d have to look and see. If it’s what I was using to then convert to a PEM, then yes.

There’s probably a pure JavaScript shim to convert from JWK to PEM, but that’s literally retarded if Firefox doesn’t support the oldest and most widely used format for key files...

I’d have to look and see. If it’s what I was using to then convert to a PEM, then yes. There’s probably a pure JavaScript shim to convert from JWK to PEM, but that’s literally retarded if Firefox doesn’t support the oldest and most widely used format for key files...

josh がコメント 2018-10-06 23:07:40 +00:00

作成者

共同作業者

リンクをコピー

Accidentally played this dance again.

Accidentally played this dance again.

jshaver がコメント 2018-11-27 00:39:48 +00:00

共同作業者

リンクをコピー

We did get this working in firefox, although not with ECDSA. Right now, if it fails to export an ECDSA key, it will fall back to RSA.

We did get this working in firefox, although not with ECDSA. Right now, if it fails to export an ECDSA key, it will fall back to RSA.

jshaver がイシューをクローズ 2018-11-27 00:40:10 +00:00

サインインしてこの会話に参加。

ブランチ/タグ指定なし

ブランチ タグ

master

v2

live-site

v1

見つかりません。

ラベル

項目なし

ラベルなし

マイルストーン

項目なし

マイルストーンなし

担当者

担当者をクリア

josh jshaver coolaj86

担当者なし jshaver jshaver jshaver jshaver

3 人の参加者

通知

購読する

期日

期日は未設定です。

依存関係

依存関係が設定されていません。

リファレンス: coolaj86/greenlock.html#1

説明はありません。