Closed
Bug 136998
Opened 23 years ago
Closed 23 years ago
Crash: Multiple identical valid recipient certs GPFs Mail client
Categories
(MailNews Core :: Security: S/MIME, defect, P1)
Tracking
(Not tracked)
VERIFIED
DUPLICATE
of bug 134992
psm2.3
People
(Reporter: carosendahl, Assigned: KaiE)
References
Details
(Keywords: crash)
Build: 2002041103 Trunk Windows
Steps to reproduce:
1. Create a new profile and set up mail account settings.
2. Import a dual-use certificate and the CA that signed it
3. Make sure the CA Trust bits are set
4. Set the dual-use cert as the signing and encryption cert in mail settings
5. import two identical user certs (different keys only) into 'Other People' store
5. Compose a message to that user
6. Choose to digitally sign and encrypt the message
7. Click send
8. You should see a failure message. Click ok.
9. Bring the window back into focus and close the window. Select 'Don't save'
10. The window closes and a few seconds later the application faults.
Specifics:
My CA: lab212 (pki)
My Cert: Charles Rosendahl (dual use)
User CA: lab212
User Certs: sectest (key 1) and sectest (key2) - (both are dual use)
certdb and key files provided by email by request
Reporter | ||
Comment 1•23 years ago
|
||
Crashes consistently on 1.0 branch as well
Severity: major → critical
Comment 2•23 years ago
|
||
Charles, how do you get these certs in the Others' tab. User certs are by
definition in the Mine tab (user cert means you have the private key).
The only way to get certs in the others' tab is to read an email or load them
using a similar mechanism as in phonebook.
It's important to see how a user would get into this situation. If it's
something that will clearly happen, then it's critical.
If it requires somebody to use certutil and there doesn't appear to be any other
way to get in this situation, I don't think we'll make this a critical bug.
Can this be reproduced in the following way:
get a cert for A. Send a signed email to B. B as A's cert in Others' tab.
get a new cert for A. Send a new signed email to B. B's new cert is in Others' tab.
Does it crash?
Assignee: ssaux → kaie
Priority: -- → P1
Target Milestone: --- → 2.3
Comment 3•23 years ago
|
||
Do you have any talkbacks from these crashes?
Reporter | ||
Comment 4•23 years ago
|
||
I meant recipient certs, not user certs. Kai's reproduction case will work.
Incident ID 5099980
Stack Signature smime3.dll + 0x38a6 (0x610538a6) 418b04bd
Trigger Time 2002-04-11 16:06:15
Email Address carosendahl@netscape.com
URL visited
Build ID 2002041113
Product ID MozillaTrunk
Platform
Operating System Win32
Module
Trigger Reason Access violation
User Comments Reproducible Crash
Stack Trace
smime3.dll + 0x38a6 (0x610538a6)
DOMGCCallback [d:\builds\seamonkey\mozilla\dom\src\base\nsJSEnvironment.cpp,
line 1623]
js_GC [d:\builds\seamonkey\mozilla\js\src\jsgc.c, line 1367]
js_ForceGC [d:\builds\seamonkey\mozilla\js\src\jsgc.c, line 980]
JS_GC [d:\builds\seamonkey\mozilla\js\src\jsapi.c, line 1645]
nsJSContext::Notify
[d:\builds\seamonkey\mozilla\dom\src\base\nsJSEnvironment.cpp, line 1573]
nsTimerImpl::Fire [d:\builds\seamonkey\mozilla\xpcom\threads\nsTimerImpl.cpp,
line 352]
nsTimerManager::FireNextIdleTimer
[d:\builds\seamonkey\mozilla\xpcom\threads\nsTimerImpl.cpp, line 584]
nsAppShell::Run [d:\builds\seamonkey\mozilla\widget\src\windows\nsAppShell.cpp,
line 134]
nsAppShellService::Run
[d:\builds\seamonkey\mozilla\xpfe\appshell\src\nsAppShellService.cpp, line 309]
main1 [d:\builds\seamonkey\mozilla\xpfe\bootstrap\nsAppRunner.cpp, line 1431]
main [d:\builds\seamonkey\mozilla\xpfe\bootstrap\nsAppRunner.cpp, line 1766]
WinMain [d:\builds\seamonkey\mozilla\xpfe\bootstrap\nsAppRunner.cpp, line 1784]
WinMainCRTStartup()
KERNEL32.DLL + 0xd326 (0x77e8d326)
Other Incident IDS:
5095775
5091658
Updated•23 years ago
|
Assignee | ||
Comment 6•23 years ago
|
||
I'm confused. Charles, can you please answer Stephane's question, how do you get
the cert into the other's tab?
Which error message do you see in step 8?
What do you mean by "Kai's reproduction case will work"?
Reporter | ||
Comment 7•23 years ago
|
||
Build 2002041711 branch:
The crash is no longer present, something has fixed it.
Here is the test case:
- receive multiple certificates from the same sender (same subjectname -
different keys). I had two from the same sender. One from OE and one from NS.
- compose a message to the owner of the multiple certs signed and encrypted.
This used to crash. Now it simply takes the first valid cert it finds (or
something) and encrypts - doesn't bother to verify or ask which one to use.
So, not a crash, just a bizarre edge case again. Kaie, I would resolve this as
wfm. I can pick up the above edge case at a later time after the core
functionality is ironed out.
thanks,
/c
Reporter | ||
Comment 8•23 years ago
|
||
Hold on - sorry. Turns out that it worked because my cert was a dual use cert.
I created a new profile and used a 512bit dual-use cert and then the crashes began.
The crash is identical to the crashes in bug 134992.
resolving duplicate.
Charles
*** This bug has been marked as a duplicate of 134992 ***
Status: NEW → RESOLVED
Closed: 23 years ago
Resolution: --- → DUPLICATE
Reporter | ||
Comment 9•23 years ago
|
||
Verified as a duplicate of bug 134992. will track that defect instead.
Status: RESOLVED → VERIFIED
You need to log in
before you can comment on or make changes to this bug.
Description
•