Red Hat Bugzilla – Bug 519766
(nss) FORTIFY_SOURCE buffer overflows and other issues in test suite
Last modified: 2013-01-10 00:26:47 EST
1) These build logs are showing multiple problems during the test suite. ppc and ppc64 are showing glibc FORTIFY_SOURCE runtime errors due to something wrong with how it is using strcpy(). i386 and x86_64 are not showing this particular problem.
2) Note the "command not found", missing utilities in BuildRequires?
3) Do they tests rely on the network or try to access anything via the network? If so then the tests must be disabled, or those parts of the tests must be disabled during package build. Network access is forbidden during buildtime on the buildsystem.
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3375: Revocation: Verifying certificate(s) EE21CA2.der with flags -g chain -m crl -d AllDB -t Root.der - PASSED
./chains.sh: line 728: ping: command not found
OCSP server not accessible, skipping OCSP tests
TIMESTAMP chains END: Thu Aug 27 13:51:09 EDT 2009
chains.sh: Testing with upgraded library ===============================
cp: cannot stat `/builddir/build/BUILD/nss-18.104.22.168.3/mozilla/tests_results/security/localhost.1/eccurves': No such file or directory
cp: cannot stat `/builddir/build/BUILD/nss-22.214.171.124.3/mozilla/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Thu Aug 27 13:51:09 EDT 2009
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
Certificate Nickname Trust Attributes
dbupgrade.sh: Legacy to shared Library update ===============================
upgrading db alicedir
*** buffer overflow detected ***: /builddir/build/BUILD/nss-126.96.36.199.3/mozilla/dist/Linux2.6_ppc_glibc_PTH_64_OPT.OBJ/bin/certutil terminated
seems happy now.
(In reply to comment #1) Happy because the tests weren't run.
A build fix with all tests passing in all platforms can be seen in
Task info: http://koji.fedoraproject.org/koji/taskinfo?taskID=1647031
Fix is in for nss-3_12_3_99_3-30_fc12
This is in rawhide/F12.