Bug 489097

Summary: Firefox seems to be crashing on Rawhide/SELinux (execmem)
Product: [Fedora] Fedora Reporter: Daniel Walsh <dwalsh>
Component: firefoxAssignee: Martin Stransky <stransky>
Status: CLOSED DUPLICATE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: high    
Version: 11CC: gecko-bugs-nobody, walters
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-09-29 10:46:34 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Daniel Walsh 2009-03-07 15:07:24 UTC 
Description of problem:

----
time->Sat Mar  7 09:59:23 2009
type=SYSCALL msg=audit(1236437963.566:1057): arch=c000003e syscall=10 success=no exit=2039005144 a0=7f766dadb000 a1=1000 a2=5 a3=8b items=0 ppid=26147 pid=26164 auid=3267 uid=3267 gid=3267 euid=3267 suid=3267 fsuid=3267 egid=3267 sgid=3267 fsgid=3267 tty=(none) ses=1 comm="firefox" exe="/usr/lib64/firefox-3.1b2/firefox" subj=staff_u:staff_r:staff_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1236437963.566:1057): avc:  denied  { execmem } for  pid=26164 comm="firefox" scontext=staff_u:staff_r:staff_t:s0-s0:c0.c1023 tcontext=staff_u:staff_r:staff_t:s0-s0:c0.c1023 tclass=process


Not sure if this is caused by flash or not (probably).  Although I am not seeing nsplugin running

firefox-3.1-0.7.beta2.fc11.x86_64
nspluginwrapper-1.3.0-5.fc11.x86_64


/usr/bin/mozilla-plugin-config -l
EXCLUDE_WRAP:
libtotem*
libjavaplugin*
gecko-mediaplayer*
mplayerplug-in*
librhythmbox*
EXCLUDE_LINK:

File/Link /usr/lib/mozilla/plugins-wrapped/nphelix.xpt
File/Link /usr/lib/mozilla/plugins-wrapped/nphelix.so
File/Link /usr/lib/mozilla/plugins-wrapped/libflashplayer.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libtotem-gmp-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libjavaplugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libtotem-narrowspace-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libtotem-mully-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/librhythmbox-itms-detection-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libtotem-cone-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libtotem-gmp-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libjavaplugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libtotem-narrowspace-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libtotem-mully-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/librhythmbox-itms-detection-plugin.so
File/Link /usr/lib64/mozilla/plugins-wrapped/libtotem-cone-plugin.so
Comment 1 Daniel Walsh 2009-03-07 15:40:28 UTC 
This seems to be a problem with nsplugin interaction.  Through SELinux I saw nsplugin_config gets run but the library was being loaded into firefox executable.   I was running the experimental 64 bit flashplugin.  I removed this plugin and installed the 32 bit plugin and saw this on running firefox.


firefox www.boston.com/sports
LoadPlugin: failed to initialize shared library /usr/lib/flash-plugin/libflashplayer.so [/usr/lib/flash-plugin/libflashplayer.so: wrong ELF class: ELFCLASS32]

So not sure if this is a nsplugin or firefox bug.
Comment 2 Martin Stransky 2009-03-10 14:03:40 UTC 
If you want to run 32-bit plugin inside 64-bit firefox you have to install nspluginwrapper.i386 too.
Comment 3 Martin Stransky 2009-03-10 14:06:21 UTC 
[/usr/lib/flash-plugin/libflashplayer.so: wrong ELF class: ELFCLASS32]

- it's caused because libflashplayer.so is somehow located in firefox plugin dir (usually by symlink from your profile or firefox install dir, it's done by flash install script)
Comment 4 Daniel Walsh 2009-03-10 15:47:34 UTC 
I have nspluginwrapper installed, It says it is wrapping this file, but it is not working.  I even see nsplugin-config touch the file,  But something is going wrong.
Comment 5 Bug Zapper 2009-06-09 11:59:10 UTC 
This bug appears to have been reported against 'rawhide' during the Fedora 11 development cycle.
Changing version to '11'.

More information and reason for this action is here:
http://fedoraproject.org/wiki/BugZappers/HouseKeeping
Comment 6 Martin Stransky 2009-09-29 10:46:34 UTC 

*** This bug has been marked as a duplicate of bug 512845 ***