Xulrunner + Iceweasel3 + flash killed by grsec
Posted: Sun Nov 30, 2008 6:50 am
My configuration:
i386 (VIA Nehemiah) with Debian unstable
Kernel 2.6.27.7 with grsec applied
Patch version: grsecurity-2.1.12-2.6.27.7-200811201849.patch
Interdiff pax-linux-2.6.27.7-test21.patch pax-linux-2.6.27.7-test22.patch applied
ii xulrunner-1.9 1.9.0.4-2 XUL + XPCOM application runner
ii iceweasel 3.0.4-1 lightweight web browser based on Mozilla
Also installed: Shockwave Flash 9.0 r31
Iceweasel starts, but is killed after flash won't start (xulrunner?).
After applying execstack on java I get a clean kill right after starting iceweasel (and giving time to fire up flash):
Dmesg output:
Tried it on another pc (AMD64X2) where unfortunately flash was not installed properly. At least it did not crash:
Since iceweasel crashes I think I will submit a bugreport to xulrunner.
Flash is a closed source propriotary plugin, but I will have to submit a bugreport there also.
i386 (VIA Nehemiah) with Debian unstable
Kernel 2.6.27.7 with grsec applied
Patch version: grsecurity-2.1.12-2.6.27.7-200811201849.patch
Interdiff pax-linux-2.6.27.7-test21.patch pax-linux-2.6.27.7-test22.patch applied
ii xulrunner-1.9 1.9.0.4-2 XUL + XPCOM application runner
ii iceweasel 3.0.4-1 lightweight web browser based on Mozilla
Also installed: Shockwave Flash 9.0 r31
Iceweasel starts, but is killed after flash won't start (xulrunner?).
- Code: Select all
$ iceweasel http://www.tokyopop.com
LoadPlugin: failed to initialize shared library /usr/lib/jvm/java-6-sun-1.6.0.10/jre/plugin/i386/ns7/libjavaplugin_oji.so [/usr/lib/jvm/java-6-sun-1.6.0.10/jre/plugin/i386/ns7/libjavaplugin_oji.so: cannot enable executable stack as shared object requires: Permission denied]
LoadPlugin: failed to initialize shared library /usr/lib/jvm/java-6-sun-1.6.0.10/jre/plugin/i386/ns7/libjavaplugin_oji.so [/usr/lib/jvm/java-6-sun-1.6.0.10/jre/plugin/i386/ns7/libjavaplugin_oji.so: cannot enable executable stack as shared object requires: Permission denied]
LoadPlugin: failed to initialize shared library /usr/lib/jvm/java-6-sun-1.6.0.10/jre/plugin/i386/ns7/libjavaplugin_oji.so [/usr/lib/jvm/java-6-sun-1.6.0.10/jre/plugin/i386/ns7/libjavaplugin_oji.so: cannot enable executable stack as shared object requires: Permission denied]
Killed
After applying execstack on java I get a clean kill right after starting iceweasel (and giving time to fire up flash):
- Code: Select all
# execstack -c /usr/lib/jvm/java-6-sun/jre/plugin/i386/ns7/libjavaplugin_oji.so
# execstack -c /usr/lib/jvm/java-6-sun/jre/lib/i386/libjavaplugin_nscp.so
Dmesg output:
- Code: Select all
# dmesg
...
grsec: signal 11 sent to /usr/lib/xulrunner-1.9/xulrunner-stub[firefox-bin:22608] uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:22316] uid/euid:1000/1000 gid/egid:1000/1000
grsec: signal 11 sent to /usr/lib/xulrunner-1.9/xulrunner-stub[firefox-bin:22608] uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:22316] uid/euid:1000/1000 gid/egid:1000/1000
PAX: execution attempt in: <anonymous mapping>, 4b44c000-4b44d000 4b44c000
PAX: terminating task: /usr/lib/xulrunner-1.9/xulrunner-stub(firefox-bin):22608, uid/euid: 1000/1000, PC: 4b44c000, SP: 5f0a488c
PAX: bytes at PC: 81 fc 68 3b 04 5f 0f 82 85 00 00 00 55 8b ec 81 ec 10 00 00
PAX: bytes at SP-4:
grsec: denied resource overstep by requesting 4096 for RLIMIT_CORE against limit 0 for /usr/lib/xulrunner-1.9/xulrunner-stub[firefox-bin:22608] uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:22316] uid/euid:1000/1000 gid/egid:1000/1000
Tried it on another pc (AMD64X2) where unfortunately flash was not installed properly. At least it did not crash:
- Code: Select all
We're sorry, but your current browser or Flash version does not meet the minimum site requirements listed below:
Browsers:
* PC: Internet Explorer 6 or higher
* PC: Netscape 7 or higher
* PC/Mac: Firefox 1.2 or higher
* PC/Mac: Mozilla 1.5 or higher
* Mac: Safari 1.0 or higher
Flash:
* PC/Mac: Flash 8 or higher
Since iceweasel crashes I think I will submit a bugreport to xulrunner.
Flash is a closed source propriotary plugin, but I will have to submit a bugreport there also.