php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #81489 windows.php.net delivers wrong intermediate certificate
Submitted: 2021-09-30 09:58 UTC Modified: 2021-09-30 12:46 UTC
From: hanno at hboeck dot de Assigned: cmb (profile)
Status: Closed Package: Website problem
PHP Version: Irrelevant OS:
Private report: No CVE-ID: None
View Add Comment Developer Edit
Anyone can comment on a bug. Have a simpler test case? Does it work for you on a different platform? Let us know!
Just going to say 'Me too!'? Don't clutter the database with that please !
Your email address:
MUST BE VALID
Solve the problem:
33 - 6 = ?
Subscribe to this entry?

 
 [2021-09-30 09:58 UTC] hanno at hboeck dot de 
Description:
------------
The webpage https://windows.php.net/ is delivering the old, now expired Let's Encrypt intermediate certificate.

Web browsers usually work around such issues most of the time, but in other clients this leads to an error, you can test e.g. with curl.

You should replace it with one of the current certificate chains.

Test script:
---------------
curl https://windows.php.net/ # will show a certificate error

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2021-09-30 10:10 UTC] cmb@php.net
-Status: Open +Status: Feedback -Assigned To: +Assigned To: cmb
 [2021-09-30 10:10 UTC] cmb@php.net 
Hmm, I see the ISRG Root X1 certificate, but not the old DST Root
CA X3 in the chain.  That appears to be correct[1].  Not sure what
to do.

[1] <https://letsencrypt.org/docs/dst-root-ca-x3-expiration-september-2021/>
 [2021-09-30 12:46 UTC] cmb@php.net
-Status: Feedback +Status: Closed
 [2021-09-30 12:46 UTC] cmb@php.net 
The server admin has just fixed this.
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Thu Apr 25 15:01:30 2024 UTC