[🐛 Bug]: Latest docker hangs on build when running certutil

[parholmdahl]

What happened?

We use certutil to add mTLS certs in the linuxcontainer. This has been working fine a long time, but with this latest build that came 5 days ago, we can not build containers anymore.

If we change image version from latest to 120.0, then it works as before..

Command used to start Selenium Grid with Docker (or Kubernetes)

This is dockerfile: 

FROM seleniarm/standalone-chromium:latest

ARG CERT_FILE
ARG PASSWORD_FILE

USER root

#=== Autoselect whatever cert that popups in chrome
COPY cert_policy.json /etc/chromium/policies/managed/cert_policy.json

#=========
# libnss3-tools
# Network Security Service tools
# Manage certificates in nssdb (certutil, pk12util, modutil, shlibsign, signtool, ssltap)
#=========
RUN apt-get -qqy update && apt-get -qqy install libnss3-tools

#=== Copy cert to user
USER seluser
COPY siths_root_ca_v1_pp.cer /home/seluser
COPY ${CERT_FILE} /home/seluser
COPY ${PASSWORD_FILE} /home/seluser

WORKDIR /home/seluser

#=== Run commands to insert certs in database
RUN mkdir -p -m755 /home/seluser/.pki/nssdb 
RUN certutil -d sql:/home/seluser/.pki/nssdb -N --empty-password 
RUN certutil -d sql:/home/seluser/.pki/nssdb -A -t TC -n "SITHS CA v1 PP" -i siths_root_ca_v1_pp.cer 
RUN sudo pk12util -d sql:/home/seluser/.pki/nssdb -i ${CERT_FILE} -w ${PASSWORD_FILE}

#=== Expose needed ports
EXPOSE 4442
EXPOSE 4443
EXPOSE 4444
EXPOSE 5555

Relevant log output

=> CANCELED [CONTAINERNAME  9/11] RUN certutil -d sql:/home/seluser/.pki/nssdb -N --empty-password                                                                                            959.1s

Operating System

Mac, Windows

Docker Selenium version (image tag)

lates but that would be 121.0

Selenium Grid chart version (chart version)

[VietND96]

ARM64 images is merged to selenium registry and using Ubuntu based (https://www.selenium.dev/blog/2024/multi-arch-images-via-docker-selenium/). Can you please check latest images and confirm this issue is resolved?