grsecurity forums

Skip to content

Problems with >=chromium 29 on grsec 3.11.5/3.10

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.
Topic locked

Problems with >=chromium 29 on grsec 3.11.5/3.10

Postby Zaolin » Thu Oct 24, 2013 3:24 pm

Hi,

at the moment i am encounter following problem if i visit specific websites:

Code: Select all
[66750.873917] grsec: Invalid alignment/Bus error occurred at 0000031d9ef20028 in /usr/lib64/chromium-browser/chrome[chrome:9878] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/lib64/chromium-browser/chrome[chrome:8474] uid/euid:1000/1000 gid/egid:1000/1000

Code: Select all
[66750.873943] grsec: bruteforce prevention initiated for the next 30 minutes or until service restarted, stalling each fork 30 seconds.  Please investigate the crash report for /usr/lib64/chromium-browser/chrome[chrome:9878] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/lib64/chromium-browser/chrome[chrome:8474] uid/euid:1000/1000 gid/egid:1000/1000


For example the chrome extension webpage. This bug seems to be reproducible.

Regards Zaolin
Zaolin
 
Posts: 3
Joined: Wed Nov 07, 2012 7:34 am
Top

Re: Problems with >=chromium 29 on grsec 3.11.5/3.10

Postby PaX Team » Sat Nov 16, 2013 11:46 am

1. can you post your kernel config?
2. if you have UDEREF enabled, can try without it?
3. what sites trigger this?
PaX Team
 
Posts: 2310
Joined: Mon Mar 18, 2002 4:35 pm
Top

Re: Problems with >=chromium 29 on grsec 3.11.5/3.10

Postby N8Fear » Sat Nov 16, 2013 6:04 pm

Do you have paxmarks on your chromium executable? I got similar errors without paxmarks (iirc -m on the chrome binary is sufficient).
I'm on chromium 32.x right now and have no issues with pax if the binary is marked correctly...

Edit: To make it sure: I'm on Gentoo and normally use the beta releases: 29.x also worked fine.
N8Fear
 
Posts: 37
Joined: Thu Jan 17, 2013 5:01 am
Top
Topic locked

Return to grsecurity support

Powered by phpBB® Forum Software © phpBB Group