Bug 557416

Summary: SIGSEGV within NSS on call of SSL_ForceHandshake() on the way from libcurl
Product: [Fedora] Fedora Reporter: palo.liska
Component: nssAssignee: Elio Maldonado Batiz <emaldona>
Status: CLOSED UPSTREAM QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: low    
Version: 12CC: emaldona, ffesti, james.antill, kdudka, kengert, maxamillion, pmatilai, tim.lauridsen
Target Milestone: ---   
Target Release: ---   
Hardware: i686   
OS: Linux   
Whiteboard: abrt_hash:2026d846d01ec5b8ab872a36275484af5b3278e5
Fixed In Version: 3.12.6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2010-09-28 15:02:33 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
File: backtrace none

Description palo.liska 2010-01-21 12:01:26 UTC 
abrt 1.0.3 detected a crash.

How to reproduce
-----
1. type "yum update" on terminal	
2. press enter
3.

Comment: Segmentation fault occured while qemu was running, and after scilab try to run. Scilab cannot start due some SElinux problems. Reboot solved this problem.
Attached file: backtrace
cmdline: /usr/bin/python /usr/bin/yum update
component: yum
executable: /usr/bin/python
kernel: 2.6.31.9-174.fc12.i686
package: yum-3.2.25-1.fc12
rating: 4
reason: Process was terminated by signal 11 (Segmentation fault)
Comment 1 palo.liska 2010-01-21 12:01:47 UTC 
Created attachment 385908 [details]
File: backtrace
Comment 2 James Antill 2010-01-21 14:24:20 UTC 
 I'm guessing this is NSS:

Program terminated with signal 11, Segmentation fault.
#0  NSC_SignInit (hSession=<value optimized out>, 
    pMechanism=<value optimized out>, hKey=<value optimized out>)
    at pkcs11c.c:2116
2116	pkcs11c.c: No such file or directory.
	in pkcs11c.c

...although it seems a bit weird to be dying here.
Comment 3 Kamil Dudka 2010-01-21 14:34:50 UTC 
Please report also NVR of installed NSS packages:

$ rpm -qa nss\*
Comment 4 palo.liska 2010-01-21 14:41:09 UTC 
(In reply to comment #3)
> Please report also NVR of installed NSS packages:
> 
> $ rpm -qa nss\*    

nss-util-3.12.5-1.fc12.1.i686
nss-softokn-devel-3.12.4-10.fc12.i686
nss-3.12.4-14.fc12.i686
nss-tools-3.12.4-14.fc12.i686
nss-mdns-0.10-8.fc12.i686
nss_ldap-264-8.fc12.i686
nss-softokn-freebl-3.12.4-10.fc12.i686
nss-softokn-3.12.4-10.fc12.i686
nss-devel-3.12.4-14.fc12.i686
nss-util-devel-3.12.5-1.fc12.1.i686
Comment 5 Kamil Dudka 2010-01-21 15:04:51 UTC 
It looks really weird to me - the frame #0 from bt points to this place:

    sftk_SetContextByType(session, SFTK_SIGN, context);

Nor 'session' nor 'context' should not be NULL at this point - it would have crashed earlier.  Additionally (context==NULL) should be no problem right here.

I suspect an outdated debuginfo or something...  The function sftk_SetContextByType() should be IMO not unfolded either as it is not declared static.

Are you able to reproduce the crash with curl(1) invoked on a https:// URL?
Comment 6 palo.liska 2010-01-21 15:34:13 UTC 
(In reply to comment #5)
> It looks really weird to me - the frame #0 from bt points to this place:
> 
>     sftk_SetContextByType(session, SFTK_SIGN, context);
> 
> Nor 'session' nor 'context' should not be NULL at this point - it would have
> crashed earlier.  Additionally (context==NULL) should be no problem right here.
> 
> I suspect an outdated debuginfo or something...  The function
> sftk_SetContextByType() should be IMO not unfolded either as it is not declared
> static.
> 
> Are you able to reproduce the crash with curl(1) invoked on a https:// URL?    

As I mentioned, problem disappear after reboot, so now I am not able to reproduce it. It was after 2 days of continuous running, within firefox crash several times, several times I used qemu, and during this all iI installed scilab and tried to start it, which leads to some alerts, like: SElinux is preventing kdm_greet (xdm_t) "connectto" ... I tried also this one report, but automatic bugreporting that time did not work.

As soon I can reproduce it I will let you know.
Comment 7 Kamil Dudka 2010-01-21 15:46:15 UTC 
(In reply to comment #6)
> As I mentioned, problem disappear after reboot, so now I am not able to

Sorry then, I somehow missed that information.

> As soon I can reproduce it I will let you know.

Would be great!

However nss-3.12.4 is AFAIK no longer actual. Chances are the bug is no longer present in the current version 3.12.5 anyhow.
Comment 8 Fedora Admin XMLRPC Client 2010-09-07 20:54:32 UTC 
This package has changed ownership in the Fedora Package Database.  Reassigning to the new owner of this component.
Comment 9 Elio Maldonado Batiz 2010-09-28 15:02:33 UTC 
I belive this bug was fixed in a slow of patches during testing of nssysinit on 3.12.5 which where incorporated upstream in 3.12.6, marking its as fixed in this nvr. I'm closing it as fixed upstream. Feel free to reopen if you see it again.