Closed Bug 1274850 Opened 9 years ago Closed 9 years ago

updated to 46.0.1 causes Secure Connection Failed security library failure. Error code: SEC_ERROR_LIBRARY_FAILURE

Categories

(Core :: Security: PSM, defect)

Product:
Core
Component:
Security: PSM
Version:
46 Branch
Platform:
x86_64
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED INCOMPLETE

People

(Reporter: galenthurber, Unassigned, NeedInfo)

Details

(Keywords: wsec-tls)

User Agent: Mozilla/5.0 (X11; Linux) AppleWebKit/538.15+ Midori/0.5 Steps to reproduce: upgraded to 46.0.1 attempted to access several secure websites. Actual results: An error occurred during a connection to (any secured website) security library failure. Error code: SEC_ERROR_LIBRARY_FAILURE The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem. Learn more… Report errors like this to help Mozilla identify and block malicious sites Expected results: sites should have been reached. firefox bug report should have been generated. Notice that informed users how to report bug without using TLS.
Component: Untriaged → Security: PSM
Product: Firefox → Core
OS: Unspecified → Linux
Hardware: Unspecified → x86_64
Keywords: wsec-tls
Some things to try: * Do you see the same error when running with a new profile? * What add-ons do you have installed? * Are you connecting through a proxy? * Are there any errors in the browser console? (Tools -> Web Developer -> Browser Console) * Do you have an anti-virus program like Kaspersky running? (Might not be relevant if you're runnning Linux) * Do you have any PKCS#11 modules loaded? (Preferences -> Advanced -> Certificates -> Security Devices) * What is the output from running Firefox from a console with the environment variable NSPR_LOG_MODULES set to "pipnss:4,certverifier:5"? * Are you running a version of Firefox downloaded from mozilla.org or one packaged and distributed by your OS? (Looks like Linux, if that field is correct.)
Flags: needinfo?(galenthurber)
new profile, did not try addons: xmarks, quickfox notes, adblock plus, ubuntu pack console? did not try yet AV? not installed Linux security certs, none from console have not tried yet. version is ubuntu package updated via synaptic The computer I am reporting on will be unavailable to me until around June 18th, after that date I will debug it further
Still getting this in the browser window. Firefox continues to freeze my Xubuntu for around 8 seconds and then allow me to control the mouse and GUI Secure Connection Failed An error occurred during a connection to www.google.com. security library failure. Error code: SEC_ERROR_LIBRARY_FAILURE The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem. firefox -g offers no additional information firefox -ProfileManager with a new profile did provide a successful TLS connection Now what?
Might be related to PKCS#11 modules - can you list the information in Preferences -> Advanced -> Certificates -> Security Devices?
During a backup I found the problem. The upgrade firefox on 20160521 the upgrade changed the file permissions to root:root on these files revocations.txt search.json search-metadata.json I changed them back to user's usergroup and the error is gone
Are those files in your profile or in some system directory? If the former, any idea why the upgrade changed the ownership to root:root? (Is that a Xubuntu bug?)
my profile. No idea why ubuntu update would change the permissions to root:root is it a package bug or ubuntu bug?
Flags: needinfo?(galenthurber)
This is looking like an ubuntu bug, but maybe :mgoodwin has an idea as to if it would be possible for Firefox code to have done this? (Basically, it looks like the ownership of revocations.txt in a profile directory got changed to root:root, and as a result the blocklist code couldn't read/write it.)
Flags: needinfo?(mgoodwin)
(In reply to David Keeler [:keeler] (use needinfo?) from comment #8) > maybe :mgoodwin has an idea as to if > it would be possible for Firefox code to have done this? The only thing I can think of is for the Firefox process to have been started as root?
Flags: needinfo?(mgoodwin)
It was never run as root. I checked my bash history Could it be the SSD entered a freeze mode, which it had been doing?
I don't know enough about SSDs and freeze mode to know if that would cause the file ownership to have changed. I kind-of doubt it, though. Galen, is there anything further we can do here? It seems like this isn't an issue with Firefox.
Flags: needinfo?(galenthurber)
Status: UNCONFIRMED → RESOLVED
Closed: 9 years ago
Resolution: --- → INCOMPLETE
You need to log in before you can comment on or make changes to this bug.