grsecurity forums

[slash]

OS: Gentoo GNU/Linux
Kernel: hardened-sources-2.6.28-r9
(grsec-2.1.13-2.6.28.10-200905241817.patch)

Kernel config:

Code: Select all

CONFIG_PAX_SEGMEXEC=y

or

Code: Select all

Security options -> Grsecurity ->  Security Level  --->  Hardened Gentoo [server]

.config

Code: Select all

#
# Grsecurity
#
# CONFIG_GRKERNSEC is not set

#
# PaX
#
CONFIG_PAX=y

#
# PaX Control
#
# CONFIG_PAX_SOFTMODE is not set
CONFIG_PAX_EI_PAX=y
CONFIG_PAX_PT_PAX_FLAGS=y
CONFIG_PAX_NO_ACL_FLAGS=y
# CONFIG_PAX_HAVE_ACL_FLAGS is not set
# CONFIG_PAX_HOOK_ACL_FLAGS is not set

#
# Non-executable pages
#
CONFIG_PAX_NOEXEC=y
CONFIG_PAX_PAGEEXEC=y
CONFIG_PAX_SEGMEXEC=y
# CONFIG_PAX_EMUTRAMP is not set
CONFIG_PAX_MPROTECT=y
CONFIG_PAX_NOELFRELOCS=y
CONFIG_PAX_KERNEXEC=y

#
# Address Space Layout Randomization
#
CONFIG_PAX_ASLR=y
CONFIG_PAX_RANDKSTACK=y
CONFIG_PAX_RANDUSTACK=y
CONFIG_PAX_RANDMMAP=y

#
# Miscellaneous hardening features
#
CONFIG_PAX_MEMORY_SANITIZE=y
CONFIG_PAX_MEMORY_UDEREF=y
CONFIG_PAX_REFCOUNT=y
# CONFIG_KEYS is not set
CONFIG_SECURITY=y
# CONFIG_SECURITYFS is not set
CONFIG_SECURITY_NETWORK=y
CONFIG_SECURITY_FILE_CAPABILITIES=y
# CONFIG_SECURITY_ROOTPLUG is not set
CONFIG_SECURITY_DEFAULT_MMAP_MIN_ADDR=0
CONFIG_CRYPTO=y


kernel.log

Code: Select all

Jan 20 21:32:33 gentoo kernel: [ 3387.497417] ------------[ cut here ]------------
Jan 20 21:32:33 gentoo kernel: [ 3387.498182] Kernel BUG at 00050f65 [verbose debug info unavailable]
Jan 20 21:32:33 gentoo kernel: [ 3387.498913] invalid opcode: 0000 [#1] SMP
Jan 20 21:32:33 gentoo kernel: [ 3387.499608] last sysfs file: /sys/devices/pci0000:00/0000:00:1f.2/host1/uevent
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] Pid: 11364, comm: python2.6 Not tainted (2.6.28-hardened-r9-nohard-lite #4)
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] EIP: 0060:[<00050f65>] EFLAGS: 00210046 CPU: 0
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] EIP is at __remove_from_page_cache+0x95/0xa0
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] EAX: 00000000 EBX: c287c3c0 ECX: c0c24949 EDX: 00000018
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] ESI: f0c192d0 EDI: f0c192d0 EBP: f0c192d0 ESP: f4cc5d8c
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  DS: 0068 ES: 0068 FS: 00d8 GS: 0033 SS: 0068
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] Process python2.6 (pid: 11364, ti=f4cc4000 task=f5affc00 task.ti=f4cc4000)
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] Stack:
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  f0c192d0 f0c192e0 c287c3c0 00050f8e c287c3c0 00000004 c287c3c0 00057cb5
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  00000003 00057e14 00001000 00000000 00000000 00000003 f6fc8ea8 00000000
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  00000000 00000000 ffffffff 00000000 0000000a 00000000 c28483a0 c2871d40
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] Call Trace:
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00050f8e>] remove_from_page_cache+0x1e/0x30
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00057cb5>] truncate_complete_page+0x35/0x70
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00057e14>] truncate_inode_pages_range+0x124/0x340
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00058047>] truncate_inode_pages+0x17/0x20
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<000ca063>] reiserfs_delete_inode+0x43/0x100
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<0009dc77>] inotify_inode_is_dead+0x17/0x80
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<0009dc77>] inotify_inode_is_dead+0x17/0x80
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<000ca020>] reiserfs_delete_inode+0x0/0x100
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00087e30>] generic_delete_inode+0x90/0x160
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<000870b4>] iput+0x44/0x50
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00084982>] d_kill+0x32/0x60
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<0008505e>] dput+0x6e/0x100
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<0007f96d>] sys_renameat+0x1fd/0x2a0
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00062a0c>] unmap_region+0xbc/0x110
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00200246>] do_md_run+0x6/0x920
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00063db6>] __do_munmap+0x296/0x2c0
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<0007fa37>] sys_rename+0x27/0x30
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00004572>] syscall_call+0x7/0xb
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00200246>] do_md_run+0x6/0x920
Jan 20 21:32:33 gentoo kernel: [ 3387.500002]  [<00200206>] md_notify_reboot+0xb6/0xf0
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] Code: 0f bd 0d c0 6a c3 c0 0f 44 ca 8d 14 cd 08 00 00 00 b9 ff ff ff ff 89 14 24 ba ff ff ff ff e8 93 60 0c 00 53 9
d 83 c4 04 5b 5e c3 <0f> 0b eb fe 8d b4 26 00 00 00 00 57 56 89 c6 53 8b 78 10 f6 00
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] EIP: [<00050f65>] __remove_from_page_cache+0x95/0xa0 SS:ESP 0068:f4cc5d8c
Jan 20 21:32:33 gentoo kernel: [ 3387.500002] ---[ end trace d81cb411896ffb92 ]---

to solve the problem diable kernel option CONFIG_PAX_SEGMEXEC

[slash]

kernel.log

Code: Select all

Jan 21 23:30:18 gentoo kernel: [ 3146.524736] ------------[ cut here ]------------
Jan 21 23:30:18 gentoo kernel: [ 3146.525513] Kernel BUG at 00051405 [verbose debug info unavailable]
Jan 21 23:30:18 gentoo kernel: [ 3146.526257] invalid opcode: 0000 [#1] SMP
Jan 21 23:30:18 gentoo kernel: [ 3146.526963] last sysfs file: /sys/devices/pci0000:00/0000:00:1f.2/host1/uevent
Jan 21 23:30:18 gentoo kernel: [ 3146.527685]
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] Pid: 10960, comm: python2.6 Not tainted (2.6.28-hardened-r9-nohard-lite #5)         
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] EIP: 0060:[<00051405>] EFLAGS: 00210002 CPU: 0
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] EIP is at __remove_from_page_cache+0x95/0xa0
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] EAX: 00000002 EBX: c28918a0 ECX: c0c24a49 EDX: 00000018
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] ESI: f13352d0 EDI: f13352d0 EBP: f13352d0 ESP: f0687d74
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  DS: 0068 ES: 0068 FS: 00d8 GS: 0033 SS: 0068
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] Process python2.6 (pid: 10960, ti=f0686000 task=f681b480 task.ti=f0686000)
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] Stack:
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  f13352d0 f13352e0 c28918a0 0005142e c28918a0 00000004 c28918a0 00058155
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  00000003 000582b4 00001000 00000000 00000000 00000003 f6e9db60 00000000
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  00000000 00000000 ffffffff 00000000 0000000a 00000000 c2871a60 c2900e60
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] Call Trace:
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<0005142e>] remove_from_page_cache+0x1e/0x30
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00058155>] truncate_complete_page+0x35/0x70
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<000582b4>] truncate_inode_pages_range+0x124/0x340
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00009000>] sys_ipc+0x100/0x300
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<0005050d>] __generic_file_aio_write_nolock+0x22d/0x540
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00009000>] sys_ipc+0x100/0x300
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<000584e7>] truncate_inode_pages+0x17/0x20
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<000ca513>] reiserfs_delete_inode+0x43/0x100
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<0009e117>] inotify_inode_is_dead+0x17/0x80
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<0009e117>] inotify_inode_is_dead+0x17/0x80
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<000ca4d0>] reiserfs_delete_inode+0x0/0x100
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<000882d0>] generic_delete_inode+0x90/0x160
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00087554>] iput+0x44/0x50
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00084e22>] d_kill+0x32/0x60
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<000854fe>] dput+0x6e/0x100
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<0007fe0d>] sys_renameat+0x1fd/0x2a0
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00061600>] free_pgtables+0x60/0x90
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00062eac>] unmap_region+0xbc/0x110
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00064256>] __do_munmap+0x296/0x2c0
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00063fd9>] __do_munmap+0x19/0x2c0
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<0007fed7>] sys_rename+0x27/0x30
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00004572>] syscall_call+0x7/0xb
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00200000>] __LOAD_PHYSICAL_ADDR+0x0/0x140
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00200246>] super_90_load+0x106/0x430
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00200202>] super_90_load+0xc2/0x430
Jan 21 23:30:18 gentoo kernel: [ 3146.528006]  [<00200202>] super_90_load+0xc2/0x430
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] Code: 0f bd 0d c0 6a c3 c0 0f 44 ca 8d 14 cd 08 00 00 00 b9 ff ff ff ff 89 14 24 ba ff ff ff ff e8 23 6a 0c 00 53 9d 83 c4 04 5b 5e c3 <0f> 0b eb fe 8d b4 26 00 00 00 00 57 56 89 c6 53 8b 78 10 f6 00
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] EIP: [<00051405>] __remove_from_page_cache+0x95/0xa0 SS:ESP 0068:f0687d74
Jan 21 23:30:18 gentoo kernel: [ 3146.528006] ---[ end trace 28cbe1d1c2c2e9c3 ]---

kernel.log

Code: Select all

Feb  4 23:36:17 gentoo kernel: [ 4789.330407] ------------[ cut here ]------------
Feb  4 23:36:17 gentoo kernel: [ 4789.331181] kernel BUG at mm/filemap.c:123!
Feb  4 23:36:17 gentoo kernel: [ 4789.331912] invalid opcode: 0000 [#1] SMP
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] last sysfs file: /sys/devices/pci0000:00/0000:00:1f.2/host1/uevent
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] Dumping ftrace buffer:
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]    (ftrace buffer empty)
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] Pid: 13011, comm: python2.6 Not tainted (2.6.28-hardened-r9-pax #9)         
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] EIP: 0060:[<00059f25>] EFLAGS: 00210002 CPU: 0
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] EIP is at __remove_from_page_cache+0x95/0xa0
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] EAX: 00000002 EBX: c2851b20 ECX: c0c25589 EDX: 00000018
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] ESI: f152bc90 EDI: f152bc90 EBP: f152bc90 ESP: f5607da4
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  DS: 0068 ES: 0068 FS: 00d8 GS: 0033 SS: 0068
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] Process python2.6 (pid: 13011, ti=f5606000 task=f6b61680 task.ti=f5606000)
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] Stack:
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  f152bc90 f152bca0 c2851b20 00059f4e c2851b20 00000004 c2851b20 00060c65
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  00000003 00060dc4 00001000 00000000 00000000 00000003 f6fd8d58 00000000
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  00000000 00000000 ffffffff 00000000 0000000a 00000000 c2868d20 c285ee60
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] Call Trace:
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00059f4e>] remove_from_page_cache+0x1e/0x30
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00060c65>] truncate_complete_page+0x35/0x70
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00060dc4>] truncate_inode_pages_range+0x124/0x340
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<000094ec>] arch_get_unmapped_area_topdown+0x7c/0x200
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00060ff7>] truncate_inode_pages+0x17/0x20
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<000d2f53>] reiserfs_delete_inode+0x43/0x100
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<000a6c47>] inotify_inode_is_dead+0x17/0x80
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<000a6c47>] inotify_inode_is_dead+0x17/0x80
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<000d2f10>] reiserfs_delete_inode+0x0/0x100
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00090e30>] generic_delete_inode+0x90/0x160
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<000900b4>] iput+0x44/0x50
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0008d992>] d_kill+0x32/0x60
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0008e05e>] dput+0x6e/0x100
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0008898d>] sys_renameat+0x1fd/0x2a0
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0006ce26>] __do_munmap+0x296/0x2c0
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0006cba9>] __do_munmap+0x19/0x2c0
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0006cef1>] sys_munmap+0x41/0x80
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0000285d>] pax_randomize_kstack+0x1d/0x40
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0000458a>] restore_all+0x0/0x18
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00088a57>] sys_rename+0x27/0x30
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00004572>] syscall_call+0x7/0xb
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<0020007b>] __LOAD_PHYSICAL_ADDR+0x7b/0x2e0
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00200246>] __LOAD_PHYSICAL_ADDR+0x246/0x2e0
Feb  4 23:36:17 gentoo kernel: [ 4789.332004]  [<00200246>] __LOAD_PHYSICAL_ADDR+0x246/0x2e0
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] Code: 0f bd 0d c0 7a c3 c0 0f 44 ca 8d 14 cd 08 00 00 00 b9 ff ff ff ff 89 14 24 ba ff ff ff ff e8 e3 75 0c 00 53 9d 83 c4 04 5b 5e c3 <0f> 0b eb fe 8d b4 26 00 00 00 00 57 56 89 c6 53 8b 78 10 f6 00
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] EIP: [<00059f25>] __remove_from_page_cache+0x95/0xa0 SS:ESP 0068:f5607da4
Feb  4 23:36:17 gentoo kernel: [ 4789.332004] ---[ end trace d2cd7d0afcdb4484 ]---

kernel.log

Code: Select all

Feb  5 03:57:44 gentoo kernel: [12114.772676] ------------[ cut here ]------------
Feb  5 03:57:44 gentoo kernel: [12114.772764] kernel BUG at mm/filemap.c:123!
Feb  5 03:57:44 gentoo kernel: [12114.772835] invalid opcode: 0000 [#1] SMP
Feb  5 03:57:44 gentoo kernel: [12114.772911] last sysfs file: /sys/devices/pci0000:00/0000:00:1f.2/host1/uevent
Feb  5 03:57:44 gentoo kernel: [12114.772992] Dumping ftrace buffer:
Feb  5 03:57:44 gentoo kernel: [12114.773060]    (ftrace buffer empty)
Feb  5 03:57:44 gentoo kernel: [12114.773128]
Feb  5 03:57:44 gentoo kernel: [12114.773189] Pid: 10857, comm: python2.6 Not tainted (2.6.28-hardened-r9-pax #10)         
Feb  5 03:57:44 gentoo kernel: [12114.773273] EIP: 0060:[<c08589b5>] EFLAGS: 00210006 CPU: 0
Feb  5 03:57:44 gentoo kernel: [12114.773351] EIP is at __remove_from_page_cache+0x95/0xa0
Feb  5 03:57:44 gentoo kernel: [12114.775218] EAX: 00000005 EBX: c25fcb80 ECX: c0b73309 EDX: 00000018
Feb  5 03:57:44 gentoo kernel: [12114.775295] ESI: f1e97c08 EDI: f1e97c08 EBP: f1e97c08 ESP: f5465d44
Feb  5 03:57:44 gentoo kernel: [12114.775372]  DS: 0068 ES: 0068 FS: 00d8 GS: 0033 SS: 0068
Feb  5 03:57:44 gentoo kernel: [12114.775446] Process python2.6 (pid: 10857, ti=f5464000 task=f6652580 task.ti=f5464000)
Feb  5 03:57:44 gentoo kernel: [12114.775528] Stack:
Feb  5 03:57:44 gentoo kernel: [12114.775589]  f1e97c08 f1e97c18 c25fcb80 c08589de c25fcb80 00000004 c25fcb80 c085f6c5
Feb  5 03:57:44 gentoo kernel: [12114.775647]  00000003 c085f824 00001000 00000000 00000000 00000015 f6fea070 00000000
Feb  5 03:57:44 gentoo kernel: [12114.775762]  00000000 00000000 ffffffff 00000000 00000008 00000000 c274c260 c274c240
Feb  5 03:57:44 gentoo kernel: [12114.775929] Call Trace:
Feb  5 03:57:44 gentoo kernel: [12114.775992]  [<c08589de>] remove_from_page_cache+0x1e/0x30
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c085f6c5>] truncate_complete_page+0x35/0x70
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c085f824>] truncate_inode_pages_range+0x124/0x340
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c085fa57>] truncate_inode_pages+0x17/0x20
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c08d0f33>] reiserfs_delete_inode+0x43/0x100
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c08a4e47>] inotify_inode_is_dead+0x17/0x80
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c08a4e47>] inotify_inode_is_dead+0x17/0x80
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c08d0ef0>] reiserfs_delete_inode+0x0/0x100
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c088f5c9>] generic_delete_inode+0x89/0x150
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c088e624>] iput+0x44/0x50
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c088bf42>] d_kill+0x32/0x60
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c088c60e>] dput+0x6e/0x100
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c0886ffd>] sys_renameat+0x1fd/0x2a0
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c085b63d>] __pagevec_free+0x1d/0x30
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c08666cc>] unmap_vmas+0x33c/0x5a0
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c085ea19>] release_pages+0x179/0x1c0
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c0868c80>] free_pgtables+0x60/0x90
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c08870c7>] sys_rename+0x27/0x30
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c0803552>] syscall_call+0x7/0xb
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c086007b>] scan_zone_unevictable_pages+0x1b/0xc0
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c086b971>] sys_munmap+0x41/0x80
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c080185d>] pax_randomize_kstack+0x1d/0x70
Feb  5 03:57:44 gentoo kernel: [12114.776003]  [<c080356a>] restore_all+0x0/0x18
Feb  5 03:57:44 gentoo kernel: [12114.776003] Code: 0f bd 0d c0 5a b8 c0 0f 44 ca 8d 14 cd 08 00 00 00 b9 ff ff ff ff 89 14 24 ba ff ff ff ff e8 23 31 0c 00 53 9d 83 c4 04 5b 5e c3 <0f> 0b eb fe 8d b4 26 00 00 00 00 57 56 89 c6 53 8b 78 10 f6 00
Feb  5 03:57:44 gentoo kernel: [12114.776003] EIP: [<c08589b5>] __remove_from_page_cache+0x95/0xa0 SS:ESP 0068:f5465d44
Feb  5 03:57:44 gentoo kernel: [12114.776003] ---[ end trace 07b8c334a3b78c68 ]---

kernel.log

Code: Select all

Feb  5 23:37:08 gentoo kernel: [ 3131.146190] ------------[ cut here ]------------
Feb  5 23:37:08 gentoo kernel: [ 3131.146277] kernel BUG at mm/filemap.c:123!
Feb  5 23:37:08 gentoo kernel: [ 3131.146348] invalid opcode: 0000 [#1] SMP
Feb  5 23:37:08 gentoo kernel: [ 3131.146424] last sysfs file: /sys/devices/pci0000:00/0000:00:1f.2/host1/uevent
Feb  5 23:37:08 gentoo kernel: [ 3131.146506] Dumping ftrace buffer:
Feb  5 23:37:08 gentoo kernel: [ 3131.146574]    (ftrace buffer empty)
Feb  5 23:37:08 gentoo kernel: [ 3131.146644]
Feb  5 23:37:08 gentoo kernel: [ 3131.146705] Pid: 11040, comm: python2.6 Not tainted (2.6.28-hardened-r9-pax #11)         
Feb  5 23:37:08 gentoo kernel: [ 3131.146789] EIP: 0060:[<c08586a5>] EFLAGS: 00210046 CPU: 0
Feb  5 23:37:08 gentoo kernel: [ 3131.146867] EIP is at __remove_from_page_cache+0x95/0xa0
Feb  5 23:37:08 gentoo kernel: [ 3131.146941] EAX: 00000000 EBX: c289b480 ECX: c0b72309 EDX: 00000018
Feb  5 23:37:08 gentoo kernel: [ 3131.148004] ESI: f1b43a70 EDI: f1b43a70 EBP: f1b43a70 ESP: f5507d74
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  DS: 0068 ES: 0068 FS: 00d8 GS: 0033 SS: 0068
Feb  5 23:37:08 gentoo kernel: [ 3131.148004] Process python2.6 (pid: 11040, ti=f5506000 task=f5588f00 task.ti=f5506000)
Feb  5 23:37:08 gentoo kernel: [ 3131.148004] Stack:
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  f1b43a70 f1b43a80 c289b480 c08586ce c289b480 00000004 c289b480 c085f3b5
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  00000003 c085f514 00001000 00000000 00000000 00000003 f6e70c08 00000000
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  00000000 00000000 ffffffff 00000000 0000000a 00000000 c287a440 c28612c0
Feb  5 23:37:08 gentoo kernel: [ 3131.148004] Call Trace:
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c08586ce>] remove_from_page_cache+0x1e/0x30
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c085f3b5>] truncate_complete_page+0x35/0x70
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c085f514>] truncate_inode_pages_range+0x124/0x340
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c085f747>] truncate_inode_pages+0x17/0x20
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c08d06e3>] reiserfs_delete_inode+0x43/0x100
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c08a46e7>] inotify_inode_is_dead+0x17/0x80
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c08a46e7>] inotify_inode_is_dead+0x17/0x80
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c08d06a0>] reiserfs_delete_inode+0x0/0x100
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c088ee69>] generic_delete_inode+0x89/0x150
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c088dec4>] iput+0x44/0x50
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c088b7e2>] d_kill+0x32/0x60
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c088beae>] dput+0x6e/0x100
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c088689d>] sys_renameat+0x1fd/0x2a0
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c08663bc>] unmap_vmas+0x33c/0x5a0
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c0868970>] free_pgtables+0x60/0x90
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c086a19c>] unmap_region+0xbc/0x110
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c0886967>] sys_rename+0x27/0x30
Feb  5 23:37:08 gentoo kernel: [ 3131.148004]  [<c0803552>] syscall_call+0x7/0xb
Feb  5 23:37:08 gentoo kernel: [ 3131.148004] Code: 0f bd 0d c0 4a b8 c0 0f 44 ca 8d 14 cd 08 00 00 00 b9 ff ff ff ff 89 14 24 ba ff ff ff ff e8 f3 2b 0c 00 53 9d 83 c4 04 5b 5e c3 <0f> 0b eb fe 8d b4 26 00 00 00 00 57 56 89 c6 53 8b 78 10 f6 00
Feb  5 23:37:08 gentoo kernel: [ 3131.148004] EIP: [<c08586a5>] __remove_from_page_cache+0x95/0xa0 SS:ESP 0068:f5507d74
Feb  5 23:37:08 gentoo kernel: [ 3131.148004] ---[ end trace a0ce9e46bf2c37a4 ]---


[slash]

system.map and kernel image http://bugs.gentoo.org/show_bug.cgi?id=351666

[PaX Team]

OS: Gentoo GNU/Linux
Kernel: hardened-sources-2.6.28-r9
(grsec-2.1.13-2.6.28.10-200905241817.patch)

that's kinda old (read: unsupported), try out .32 or .36/.37 please.

[slash]

OS: Gentoo GNU/Linux
Kernel: hardened-sources-2.6.28-r9
(grsec-2.1.13-2.6.28.10-200905241817.patch)

that's kinda old (read: unsupported), try out .32 or .36/.37 please.

I reopen ticket 351666 because I reproduced it on a newer version (hardened-sources-2.6.32-r31)

Code: Select all

$ uname -a
Linux gate 2.6.32-hardened-r31-test #4 SMP Mon Jan 17 21:37:18 MSK 2011 i686 Intel(R) Core(TM)2 CPU 4300 @ 1.80GHz GenuineIntel GNU/Linux

dmesg

Code: Select all

[ 7235.303478] invalid opcode: 0000 [#1] SMP
[ 7235.303575] last sysfs file: /sys/devices/pci0000:00/0000:00:1e.0/0000:07:01.0/net/eth2/broadcast
[ 7235.303669]
[ 7235.303732] Pid: 22660, comm: emerge Not tainted (2.6.32-hardened-r31-test #4)         
[ 7235.303822] EIP: 0060:[<c01681a6>] EFLAGS: 00210046 CPU: 1
[ 7235.303904] EIP is at __remove_from_page_cache+0xb6/0xc0
[ 7235.303982] EAX: 00000000 EBX: c33cffc0 ECX: fffffffa EDX: 8000006d
[ 7235.304063] ESI: f649347c EDI: f649347c EBP: f62a9ce0 ESP: f62a9cd4
[ 7235.304145]  DS: 0068 ES: 0068 FS: 00d8 GS: 0033 SS: 0068
[ 7235.304223] Process emerge (pid: 22660, ti=f62a8000 task=f498cc00 task.ti=f62a8000)
[ 7235.304310] Stack:
[ 7235.304373]  00001000 f649348c c33cffc0 f62a9cf4 c01681d1 c33cffc0 f649347c c33cffc0
[ 7235.304434] <0> f62a9d10 c016edee 00000001 00000000 00000000 0000000d 0000000e f62a9d88
[ 7235.304552] <0> c016ef0c 0000000e 00000000 0000002c 00000000 00000000 f649347c 00000000
[ 7235.304724] Call Trace:
[ 7235.304792]  [<c01681d1>] ? remove_from_page_cache+0x21/0x30
[ 7235.304873]  [<c016edee>] ? truncate_inode_page+0x7e/0xc0
[ 7235.304953]  [<c016ef0c>] ? truncate_inode_pages_range+0xdc/0x2c0
[ 7235.305035]  [<c01ec850>] ? reiserfs_delete_inode+0x0/0xd0
[ 7235.305114]  [<c016f10a>] ? truncate_inode_pages+0x1a/0x20
[ 7235.305193]  [<c01ec870>] ? reiserfs_delete_inode+0x20/0xd0
[ 7235.305273]  [<c01a6774>] ? d_move_locked+0x1f4/0x230
[ 7235.305350]  [<c01ec850>] ? reiserfs_delete_inode+0x0/0xd0
[ 7235.305429]  [<c01a8b2d>] ? generic_delete_inode+0x6d/0x110
[ 7235.307539]  [<c01a8c27>] ? generic_drop_inode+0x57/0x80
[ 7235.307617]  [<c01a7c27>] ? iput+0x47/0x50
[ 7235.307691]  [<c01a51e7>] ? dentry_iput+0x67/0xe0
[ 7235.307766]  [<c01a5315>] ? d_kill+0x35/0x60
[ 7235.307840]  [<c01a59ce>] ? dput+0x6e/0x110
[ 7235.307914]  [<c019e8d8>] ? sys_renameat+0x1e8/0x2a0
[ 7235.307992]  [<c017fd4f>] ? unmap_region+0xcf/0x130
[ 7235.308069]  [<c017fdf1>] ? remove_vma+0x41/0x60
[ 7235.308145]  [<c019e9b8>] ? sys_rename+0x28/0x30
[ 7235.308222]  [<c01034a5>] ? syscall_call+0x7/0xb
[ 7235.308296] Code: bd 0d 40 af 50 c0 0f 44 ca 8d 14 cd 08 00 00 00 b9 ff ff ff ff 89 14 24 ba ff ff ff ff e8 13 36 0e 00 53 9d 83 c4 04 5b 5e c9 c3 <0f> 0b eb fe 8d b6 00 00 00 00 55 89 e5 57 56 89 c6 53 8b 78 10
[ 7235.308715] EIP: [<c01681a6>] __remove_from_page_cache+0xb6/0xc0 SS:ESP 0068:f62a9cd4
[ 7235.308812] ---[ end trace db83bb3d2a43c0b2 ]---

[PaX Team]

I reopen ticket 351666 because I reproduced it on a newer version (hardened-sources-2.6.32-r31)

can you tell me which grsec patch that ebuild is based on? also can you reliably reproduce this problem? any particular ebuild you were emerging perhaps? does it only happen on reiserfs? also let's stick to one forum to discuss this please .

[slash]

I reopen ticket 351666 because I reproduced it on a newer version (hardened-sources-2.6.32-r31)

can you tell me which grsec patch that ebuild is based on?

hardened-patches-2.6.32-34.extras.tar.bz2
4420_grsecurity-2.2.1-2.6.32.27-201012130740.patch

also can you reliably reproduce this problem?

I think I can. I did it many times.

any particular ebuild you were emerging perhaps?

No. I run emerge system

Code: Select all

while true; do emerge -e system; done

does it only happen on reiserfs?

Yes, it does.

Code: Select all

# mount
/dev/md0 on / type reiserfs (rw,noatime,notail)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
udev on /dev type tmpfs (rw,nosuid,relatime,size=10240k,mode=755)
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620)
/dev/md1 on /usr type reiserfs (rw,noatime,notail)
/dev/md2 on /tmp type reiserfs (rw,noexec,nosuid,nodev,noatime,notail)
/dev/md4 on /var type reiserfs (rw,nosuid,nodev,noatime,notail)
/dev/md3 on /home type reiserfs (rw,nosuid,nodev,noatime,notail)
shm on /dev/shm type tmpfs (rw,noexec,nosuid,nodev)