Closed Bug 200757 Opened 18 years ago Closed 18 years ago

PSM won't start (libsoftokn3.so seems to have bad signature)

Categories

(Core Graveyard :: Security: UI, defect)

Other Branch
x86
Linux
defect
Not set
normal

Tracking

(Not tracked)

VERIFIED DUPLICATE of bug 200775

People

(Reporter: dave.mueller, Assigned: rrelyea)

Details

User-Agent:       Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.3) Gecko/20030312
Build Identifier: http://ftp.mozilla.org/pub/mozilla/releases/mozilla1.4a/mozilla-i686-pc-linux-gnu-1.4a-sea.tar.gz

I have installed Mozilla-1.4A from the official URL (see above).
Everytime PSM is started (e.g. either by getting new mail or manually by
"Tools->Password Manager->Manage Stored Passwords"), there appears a warning
telling me that PSM was unable to initialize itself and i should check some file
permissions or available disks space.

Here's the output on the console:
File /opt/Mozilla-1.4A/libsoftokn3.so: 445152 bytes
  hash: 20 bytes
    9f b5 96 9b a8 a3 9a 1c af 05
    ae 65 80 55 7a 75 29 e1 9a 3a
  signature: 40 bytes
    17 dd 62 51 97 20 8e be e8 b8
    05 16 b8 5d 3d df 46 54 a3 8c
    74 93 9d e9 5a 35 71 22 ef fe
    43 0f 95 e7 44 9e c4 2f 39 67
Verified : FALSE

[this is repeated 3 times more]


Reproducible: Always

Steps to Reproduce:
1. Install Mozilla-1.4A
2. Do something which starts PSM


Actual Results:  
Warning box appears, PSM not working.

Expected Results:  
Start PSM
Mr. Müller:

Is the FIPS mode enabled in your Mozilla client?

Could you post the output of this command on your system?

% ls -l /opt/Mozilla-1.4A/libsoftokn3.*
Mr. Müller,

I reproduced the problem by trying to enable FIPS in my
Mozilla 1.4 Alpha installation.
Status: UNCONFIRMED → NEW
Ever confirmed: true
I found out what's wrong.  This bug should be changed to
either an NSS bug or a Browser Installer bug.

libsoftokn3.chk is the checksum file for libsoftokn3.so.
Right now it is generated by NSS after libsoftokn3.so is
built.

When Mozilla generates the installer, it strips libsoftokn3.so.
This is why the checksum verification failed (because
libsoftokn3.so has been modified).

Some possible solutions are:

1. Modify Mozilla so that it does not strip libsoftokn3.so
when generating the installer.

2. Modify Mozilla so that it regenerates libsoftokn3.chk
after stripping libsoftokn3.so.

3. Add a build option to NSS to strip the NSS shared libraries.
This requires the property that stripping an already stripped
library has no effect.  I think this is true but my experiments
showed that it is not true if I strip libsoftokn3.so first on
Red Hat Linux 7.1 then on Red Hat Linux 9.  So this solution
is more fragile than the first two solutions.

I think Solution 2 is the best, but it may require the most
work.
Assignee: ssaux → relyea
v1.4a to 2003041709 (wintel), PSM is not starting.  I'm seeing the following
error:   http://mozillazine.org/forums/viewtopic.php?t=8787 

I have tested latest builds of minotaur/phoenix and not seeing problem (ie. PSM
working fine).  I've seen the same PSM problem with Mozilla since release of
1.4a.   Presently, I'm forced to use v1.3 because need SSL(PSM) imaps.  -GA

*** This bug has been marked as a duplicate of 200775 ***
Status: NEW → RESOLVED
Closed: 18 years ago
Resolution: --- → DUPLICATE
V
Status: RESOLVED → VERIFIED
Product: PSM → Core
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.