Webdav Calendar certificate check fails with IPv6
Hi,
I am using Thunderbird 78.7.1 (64bit) under Ubuntu. I would like to sync my WebDAV calendar with Thunderbird Calendar. I have configured the calendar via its IPv6 address. In the calendar config, I enter the address: https://[2a02:908:1341:xxxx:xxx:xxxx:xxxx:xxxf]:5006/path/path/ ("xxxx" and "path" being replacements for privacy reasons).
There is an exclamation mark behind the calendar name in the calendar overview taht shows the error message when hovering over it: "The calendar xyz is currently not available." (translated from German "Der Kalender xyz ist momentan nicht verfügbar").
When clicking on "Kalender synchronisieren" (sync calendar), I get the attached screenshots: Nothing happens if I click on "Sicherheits-Ausnahmeregel bestätigen" (confirm security exception rule) or "Zertifikat herunterladen" (download certificate). The button is pressed and greyed out, but no further action happens. I can click on "cancel" (Abbrechen).
Port 5006 is reachable via telnet and its IPV6 address.
My questions: Is it allowed to enter an IPv6 address in the calendar config? What may be the reason for dealing with the certificate, having no reaction of Thunderbird?
Thanks,
Superwallah
Chosen solution
Now it works: Leaving out the port (using 443) in the security exceptions, it worked. And: I had to add the security exception manually in the settings. I was not able to press the offered button directly. The IPV6 address in the exceptions is still shown without brackets which is confusing.
But still: There is a bug around this case......
Read this answer in context 👍 0All Replies (5)
Looks like the cert expired.
christ1 schrieb
Looks like the cert expired.
Of course, you were right. I thought I had a few more days. Unfortunately, also with the renewed Let's encrypt certificate (valid until 12.7.2021), I get exactly the same errors.
Any further ideas?
Can you create an exception when prompted? https://support.mozilla.org/kb/add-security-exception
As I wrote, adding the exception via pressing the button (see screenshot) is not possible. When I press the button, it is greyed out, but nothing happens anymore. The only option I have is to click cancel. This, at least, is a bug.
If I go to Edit->Settings->Security->certificates->Server->Add exception and add the URL without the path there (so https://[2a02:908:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx]:5006), then I get the same warning screen. But here the button "add security exception" can be pressed. A line in the table of the "server" tab in the certificates settings is added (with correct expiration date). ...but with the Server address as IPv6 address without the brackets! I looks then like "2a02:908:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:5006". Can Thunderbird then distinguish between the IPv6 colons and the port colon??? Is that a bug?
When I then go to "sync calendar", I get the same security warning as before.
I know that this is not the straitforward use case, using an IPv6 address. But it should work, shouldn't it?
Chosen Solution
Now it works: Leaving out the port (using 443) in the security exceptions, it worked. And: I had to add the security exception manually in the settings. I was not able to press the offered button directly. The IPV6 address in the exceptions is still shown without brackets which is confusing.
But still: There is a bug around this case......
Modified by firefox1331