modutil et. al. segfault using PKCS11 api lib
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
opencryptoki (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: libopencryptoki
Description of actions which leads to segfault:
installation of trousers, tpm-tools, libnss3-tools, opencryptoki and libopencryptoki0
# only softtoken (#0) is available after installation.
sudo su -
pkcsconf -I -c 0
pkcsconf -c 0 -P
pkcsconf -c 0 -u
# so far everything works fine, the softtoken is now configured.
exit # back to normal user:
Now the following happens:
macfiron@
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type
'q <enter>' to abort, or <enter> to continue:
Segmentation fault
When installing dbg-versions of used programs and libraries, the erros is traced to /usr/lib/
Since I'm not sure what exactly leads to this behavior, I initially generated the bug report by quoting "libnss3-tools", perhaps opencryptoki would have been more accurate.
ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: libnss3-tools 3.12.6-0ubuntu3
ProcVersionSign
Uname: Linux 2.6.32-24-generic i686
Architecture: i386
Date: Wed Aug 4 15:40:57 2010
InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release i386 (20100429)
ProcEnviron:
LANG=de_DE.utf8
SHELL=/bin/bash
SourcePackage: nss
It appears this is because newer nss versions use read only memory to hold the buffer passed to C_Initialize. opencryptoki is attempting to force a (obsolete?) flag to be on. Upstream removed this behavior about a year ago.