[SOLVED] PAX size overflow in via-velocity
Posted: Thu Apr 28, 2016 2:39 am
It's me back again, now with ubuntu 16.04 desktop system.
Trying to use latest kernel 4.4.8 and latest grsecurity-3.1-4.4.8-201604252206.patch triggers a pax size overflow.
Nevertheless, the system is booting until I see a half desktop and then stops working. Without UDEREF the kernel is booting fine.
Tested a virtual machine with ubuntu 16.04 server release and latest grsec patch and it's running well! Also ubuntu 14.04 desktop system with gcc version 4.4.8 is running with latest grsec patch
gcc version 5.3.1 20160413 (Ubuntu 5.3.1-14ubuntu2)
regards
Trying to use latest kernel 4.4.8 and latest grsecurity-3.1-4.4.8-201604252206.patch triggers a pax size overflow.
Nevertheless, the system is booting until I see a half desktop and then stops working. Without UDEREF the kernel is booting fine.
Tested a virtual machine with ubuntu 16.04 server release and latest grsec patch and it's running well! Also ubuntu 14.04 desktop system with gcc version 4.4.8 is running with latest grsec patch
gcc version 5.3.1 20160413 (Ubuntu 5.3.1-14ubuntu2)
- Code: Select all
kernel: [ 15.701048] device enp4s0 entered promiscuous mode
kernel: [ 15.717285] PAX: size overflow detected in function velocity_rx_refill drivers/net/ethernet/via/via-velocity.c:1547 cicus.1043_125 min, count: 20, decl: size; num: 0; context: rx_desc;
kernel: [ 15.717289] CPU: 1 PID: 733 Comm: ip Not tainted 4.4.8 #2
kernel: [ 15.717290] Hardware name: ASUS All Series/Z87M-PLUS, BIOS 1107 11/04/2014
kernel: [ 15.717292] 0000000000000246 26f5f909cdc6de41 ffffc90003c1b560 ffffffffa43db2a4
kernel: [ 15.717293] 000000000000060b 26f5f909cdc6de41 ffffffffc01366b8 000000000000060b
dbus[1866]: [system] Activating via systemd: service name='org.freedesktop.PolicyKit1' unit='polkitd.service'
kernel: [ 15.717295] ffffc90003c1b590 ffffffffa41d6a4c ffff88067f44c800 0000000000000000
kernel: [ 15.717297] Call Trace:
kernel: [ 15.717301] [<ffffffffa43db2a4>] dump_stack+0x60/0x9c
kernel: [ 15.717306] [<ffffffffc01366b8>] ? velocity_ethtool_ops+0x7b8/0xb90 [via_velocity]
kernel: [ 15.717309] [<ffffffffa41d6a4c>] report_size_overflow+0x6c/0x80
kernel: [ 15.717311] [<ffffffffc013440d>] velocity_rx_refill+0x1fd/0x2d0 [via_velocity]
kernel: [ 15.717314] [<ffffffffa4412bd0>] ? swiotlb_alloc_coherent+0x160/0x160
systemd[1]: Reached target Bluetooth.
kernel: [ 15.717317] [<ffffffffc0134c2c>] velocity_init_rings+0x20c/0x410 [via_velocity]
kernel: [ 15.717319] [<ffffffffc01351e1>] velocity_open+0x21/0x115 [via_velocity]
kernel: [ 15.717320] [<ffffffffc01358e0>] ? velocity_pm_ops+0xc0/0xc0 [via_velocity]
kernel: [ 15.717323] [<ffffffffa470e493>] __dev_open+0xe3/0x160
kernel: [ 15.717325] [<ffffffffa470e7d2>] __dev_change_flags+0xb2/0x180
kernel: [ 15.717326] [<ffffffffa470e8c4>] dev_change_flags+0x24/0x70
kernel: [ 15.717329] [<ffffffffa471fba7>] do_setlink+0x6c7/0xc40
kernel: [ 15.717332] [<ffffffffa4395e9e>] ? generic_make_request+0x2e/0x200
kernel: [ 15.717334] [<ffffffffc01358e0>] ? velocity_pm_ops+0xc0/0xc0 [via_velocity]
kernel: [ 15.717336] [<ffffffffa4393a34>] ? alloc_request_struct+0x14/0x20
kernel: [ 15.717343] [<ffffffffc0589c40>] ? br_port_state_names+0x40/0x40 [bridge]
bluetoothd[1837]: Bluetooth management interface 1.10 initialized
kernel: [ 15.717344] [<ffffffffa4721484>] rtnl_newlink+0x5f4/0x900
kernel: [ 15.717347] [<ffffffffa405e4ab>] ? flush_tlb_page+0x4b/0x1f0
kernel: [ 15.717350] [<ffffffffa415b4e2>] ? lru_cache_add_active_or_unevictable+0x22/0xa0
kernel: [ 15.717352] [<ffffffffa4177c44>] ? wp_page_copy.isra.72+0x284/0x550
kernel: [ 15.717355] [<ffffffffa4413fc2>] ? nla_parse+0x32/0x100
kernel: [ 15.717358] [<ffffffffc0589c40>] ? br_port_state_names+0x40/0x40 [bridge]
kernel: [ 15.717360] [<ffffffffa4721299>] ? rtnl_newlink+0x409/0x900
kernel: [ 15.717363] [<ffffffffa43ca517>] ? gr_is_capable+0x17/0x30
kernel: [ 15.717366] [<ffffffffa4076131>] ? ns_capable+0x41/0x70
kernel: [ 15.717367] [<ffffffffa471e88f>] rtnetlink_rcv_msg+0x9f/0x250
kernel: [ 15.717369] [<ffffffffa41d708f>] ? __check_object_size.part.42+0x2f/0x1e0
bluetoothd[1837]: Failed to obtain handles for "Service Changed" characteristic
kernel: [ 15.717371] [<ffffffffa471e7f0>] ? rtnetlink_rcv+0x40/0x40
kernel: [ 15.717373] [<ffffffffa4747f58>] netlink_rcv_skb+0xe8/0x140
kernel: [ 15.717374] [<ffffffffa471e7d3>] rtnetlink_rcv+0x23/0x40
kernel: [ 15.717375] [<ffffffffa474739c>] netlink_unicast+0x13c/0x1e0
kernel: [ 15.717376] [<ffffffffa4747962>] netlink_sendmsg+0x522/0x820
kernel: [ 15.717379] [<ffffffffa46e387b>] sock_sendmsg+0x4b/0x60
kernel: [ 15.717381] [<ffffffffa46e4e41>] ___sys_sendmsg+0x291/0x2a0
kernel: [ 15.717383] [<ffffffffa415b4e2>] ? lru_cache_add_active_or_unevictable+0x22/0xa0
dbus[1866]: [system] Activating via systemd: service name='org.freedesktop.hostname1' unit='dbus-org.freedesktop.hostname1.service'
kernel: [ 15.717385] [<ffffffffa41ebec6>] ? __dentry_kill+0x196/0x250
kernel: [ 15.717387] [<ffffffffa41f6a2f>] ? mntput+0x1f/0x40
kernel: [ 15.717389] [<ffffffffa41d1668>] ? __fput+0x1a8/0x260
kernel: [ 15.717391] [<ffffffffa46e68bc>] __sys_sendmsg+0x4c/0x90
kernel: [ 15.717392] [<ffffffffa46e690d>] SyS_sendmsg+0xd/0x30
kernel: [ 15.717394] [<ffffffffa48445a4>] entry_SYSCALL_64_fastpath+0x16/0x73
regards