Closed Bug 200757 Opened 22 years ago Closed 22 years ago

PSM won't start (libsoftokn3.so seems to have bad signature)

Categories

(Core Graveyard :: Security: UI, defect)

Product:
Core Graveyard
Component:
Security: UI
Version:
Other Branch
Platform:
x86
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED DUPLICATE of bug 200775

People

(Reporter: dave.mueller, Assigned: rrelyea)

Details

User-Agent: Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.3) Gecko/20030312 Build Identifier: http://ftp.mozilla.org/pub/mozilla/releases/mozilla1.4a/mozilla-i686-pc-linux-gnu-1.4a-sea.tar.gz I have installed Mozilla-1.4A from the official URL (see above). Everytime PSM is started (e.g. either by getting new mail or manually by "Tools->Password Manager->Manage Stored Passwords"), there appears a warning telling me that PSM was unable to initialize itself and i should check some file permissions or available disks space. Here's the output on the console: File /opt/Mozilla-1.4A/libsoftokn3.so: 445152 bytes hash: 20 bytes 9f b5 96 9b a8 a3 9a 1c af 05 ae 65 80 55 7a 75 29 e1 9a 3a signature: 40 bytes 17 dd 62 51 97 20 8e be e8 b8 05 16 b8 5d 3d df 46 54 a3 8c 74 93 9d e9 5a 35 71 22 ef fe 43 0f 95 e7 44 9e c4 2f 39 67 Verified : FALSE [this is repeated 3 times more] Reproducible: Always Steps to Reproduce: 1. Install Mozilla-1.4A 2. Do something which starts PSM Actual Results: Warning box appears, PSM not working. Expected Results: Start PSM
Mr. Müller: Is the FIPS mode enabled in your Mozilla client? Could you post the output of this command on your system? % ls -l /opt/Mozilla-1.4A/libsoftokn3.*
Mr. Müller, I reproduced the problem by trying to enable FIPS in my Mozilla 1.4 Alpha installation.
Status: UNCONFIRMED → NEW
Ever confirmed: true
I found out what's wrong. This bug should be changed to either an NSS bug or a Browser Installer bug. libsoftokn3.chk is the checksum file for libsoftokn3.so. Right now it is generated by NSS after libsoftokn3.so is built. When Mozilla generates the installer, it strips libsoftokn3.so. This is why the checksum verification failed (because libsoftokn3.so has been modified). Some possible solutions are: 1. Modify Mozilla so that it does not strip libsoftokn3.so when generating the installer. 2. Modify Mozilla so that it regenerates libsoftokn3.chk after stripping libsoftokn3.so. 3. Add a build option to NSS to strip the NSS shared libraries. This requires the property that stripping an already stripped library has no effect. I think this is true but my experiments showed that it is not true if I strip libsoftokn3.so first on Red Hat Linux 7.1 then on Red Hat Linux 9. So this solution is more fragile than the first two solutions. I think Solution 2 is the best, but it may require the most work.
Assignee: ssaux → relyea
v1.4a to 2003041709 (wintel), PSM is not starting. I'm seeing the following error: http://mozillazine.org/forums/viewtopic.php?t=8787 I have tested latest builds of minotaur/phoenix and not seeing problem (ie. PSM working fine). I've seen the same PSM problem with Mozilla since release of 1.4a. Presently, I'm forced to use v1.3 because need SSL(PSM) imaps. -GA
*** This bug has been marked as a duplicate of 200775 ***
Status: NEW → RESOLVED
Closed: 22 years ago
Resolution: --- → DUPLICATE
V
Status: RESOLVED → VERIFIED
Product: PSM → Core
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.