Bug 258186 - www/firefox 91.0.2,2 package gives NS_ERROR_NET_INADEQUATE_SECURITY
Summary: www/firefox 91.0.2,2 package gives NS_ERROR_NET_INADEQUATE_SECURITY
Status: Closed Unable to Reproduce
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: freebsd-gecko (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2021-08-31 19:40 UTC by doug
Modified: 2021-09-02 15:26 UTC (History)
1 user (show)

See Also:
jbeich: maintainer-feedback+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description doug 2021-08-31 19:40:33 UTC
I installed thunderbird which required firefox to be be updated to 90.0.2,2. Almost all sites including google.com, americanexpress.com, and mozilla.com to failing loading with:

Your connection is not secure

The website tried to negotiate an inadequate level of security.

www.mozilla.com uses security technology that is outdated and vulnerable to attack. An attacker could easily reveal information which you thought to be safe. The website administrator will need to fix the server first before you can visit the site.

Error code: NS_ERROR_NET_INADEQUATE_SECURITY
Comment 1 Jan Beich freebsd_committer 2021-09-01 12:51:01 UTC
Partial upgrades are not supported. Make sure *all* packages are up-to-date or in sync with the ports tree. NS_ERROR_NET_INADEQUATE_SECURITY often appears when "firefox" encounters different "nss" version than what it was built against. IIRC,  this is due to TLS defaults not being part of ABI.

Otherwise, I can't reproduce inside poudriere jail with X11/Wayland socket passed through. Provide more details about your environment.
Comment 2 doug 2021-09-02 14:47:29 UTC
none of the suggested about:config changes made any difference. Doing a "pkg upgrade", e.g. doing all packages fixed the problem for me
Comment 3 Jan Beich freebsd_committer 2021-09-02 15:26:54 UTC
Closing per comment 2.