Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Where did "Add exception" go?

more options

In the latest update to Firefox for Android - 31.0 - the "Add exception" option disappeared on the Invalid certificate page. I have done a ton of research and apparently no one is bothered or am I the only one having this problem?

The website is https://ap2.commercialpress.com.hk Android ICS 4.0.4 There is a "Try again" button and nothing else. The previous versions up to 29.0.1 did ask for an exception through a dialog popup. 31.0 does not. I did try all possible combinations of all "cert" settings in about:config.

Is it going to be fixed?

All Replies (4)

more options

Firefox 31 introduced a new certificate validation component, and in some cases (I do not know the exact pattern), that third section of the error page is missing, or you get a different error page.

When I view the certificate in Google Chrome (desktop) it appears to be self-signed by the organization and not any recognized certificate authority.

On desktop Firefox, you could export a certificate from one of your other browsers and import it into Firefox as a workaround. I don't know whether there is a similar workaround on Android since all of the browsers have much more limited feature sets.

more options

i see, thank you for your reply, jscher2000 (^_^)

but well, that seems no good, i did some research and found two different ways to import certificates into mobile firefox, one thru an addon called Cert Manager (https://addons.mozilla.org/en-US/mobile/addon/cert-manager/) which says is not compatible with ff 31.0, and another extremely elaborate process using these tools: http://dl.dropbox.com/u/34141866/NSS_Tools_x86_from_NSS_3.12.7%20Tools.zip

However the method described there is for pk12 certificates and i can't seem to be able to export this from the desktop ff for this website, supposedly because the certificate does not have a "private key".

is there another way to import this certificate which i can export from desktop ff in these formats: PEM, CRT, DER, P7C ?

otherwise until firefox does offer to add the exception itself, i'll have to drop all future updates. it's so sad how good things always go "better" by losing features or functionality.

more options

I filled a bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1057344

you can register on bugzilla and add yourself on cc list to get notification about latest update.

Thanks

more options

hey, swarnava, wow, thanks (^_^) i saw it was getting looked into. yes, the cert and security on the site is non-standard, but nevertheless. thanks again.