[Bug 1725250] Re: Ubuntu 17.10 - opencryptoki 3.7.0 segmentation fault on pkcsconf -t

Wed, 16 May 2018 11:21:33 -0700 

Three bugs.

bug 1 - on Ubuntu, pkcsconf -t results in segfault in default
configuration, when executed without libep11.so installed. At least on
my s1lp14 I see that. This is not good.

bug 2 - with ep11 token removed from the opencryptoki config, slots 1 2
3 are recognized as ICA; instead of ICA/CCA/SW. And no segfaults.

Which is very weird, because I would have expected the slot 2 to be
empty for me, given that libcsulcca.so is not installed on my system,
and thus it should not have been loaded at all....

bug 3 - even with extra deps from IBM, there are segfaults, e.g. run -m
-c 1 (based on the message above from 2018-05-16 12:13 EDT by Christian
Rund).

Some of the above may be duplicates.

Playing around with these things, it appears that whichever first token
that is loaded "wins" and the rest of tokens duplicated it. with the
following config:

version opencryptoki-3.1
slot 0
{
stdll = libpkcs11_tok.so
}
slot 1
{
stdll = libpkcs11_cca.so
}
slot 2
{
stdll = libpkcs11_cca.so
}
slot 3
{
stdll = libpkcs11_sw.so
}
slot 4
{
stdll = libpkcs11_ep11.so
confname = ep11tok.conf
}
slot 5
{
stdll = libpkcs11_ica.so
}

My output is:
sudo pkcsconf -t
Token #3 Info:
        Label: IBM OS PKCS#11                  
        Manufacturer: IBM Corp.                       
        Model: IBM SoftTok     
        Serial Number: 123             
        Flags: 0x880045 
(RNG|LOGIN_REQUIRED|CLOCK_ON_TOKEN|USER_PIN_TO_BE_CHANGED|SO_PIN_TO_BE_CHANGED)
        Sessions: 0/18446744073709551614
        R/W Sessions: 18446744073709551615/18446744073709551614
        PIN Length: 4-8
        Public Memory: 0xFFFFFFFFFFFFFFFF/0xFFFFFFFFFFFFFFFF
        Private Memory: 0xFFFFFFFFFFFFFFFF/0xFFFFFFFFFFFFFFFF
        Hardware Version: 1.0
        Firmware Version: 1.0
        Time: 14:08:50
Token #5 Info:
        Label: IBM OS PKCS#11                  
        Manufacturer: IBM Corp.                       
        Model: IBM SoftTok     
        Serial Number: 123             
        Flags: 0x880045 
(RNG|LOGIN_REQUIRED|CLOCK_ON_TOKEN|USER_PIN_TO_BE_CHANGED|SO_PIN_TO_BE_CHANGED)
        Sessions: 0/18446744073709551614
        R/W Sessions: 18446744073709551615/18446744073709551614
        PIN Length: 4-8
        Public Memory: 0xFFFFFFFFFFFFFFFF/0xFFFFFFFFFFFFFFFF
        Private Memory: 0xFFFFFFFFFFFFFFFF/0xFFFFFFFFFFFFFFFF
        Hardware Version: 1.0
        Firmware Version: 1.0
        Time: 14:08:50

Making "all tokens" to be SoftTok.

I'll debug stuff more, looks like initialisation of tokens is broken
/not-cleared/reset correctly or something =/

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1725250

Title:
  Ubuntu 17.10 - opencryptoki 3.7.0 segmentation fault on pkcsconf -t

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu-z-systems/+bug/1725250/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to