I just found this in my pax.log: Aug 21 14:20:10 localhost kernel: PAX: execution attempt in: (null), 00000000-00000000 00000000 Aug 21 14:20:10 localhost kernel: PAX: terminating task: /usr/lib64/chromium-browser/chrome(chrome):16159, uid/euid: 1000/1000, PC: (nil), SP: 000003803e2372a8 Aug 21 14:20:10 localhost kernel: PAX: bytes at PC: ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? Aug 21 14:20:10 localhost kernel: PAX: bytes at SP-8: 00000006315e52c0 000002c4fffcc592 000002c4ee3a4ef8 000002c4ef06c445 000002c4ea3700a0 000002c4ef066675 0000000000000000 000002c4ef0ef3d8 0000000000000000 000002c4e784e000 00000006315cc000 Portage 2.1.12.2 (default/linux/amd64/13.0/no-multilib, gcc-4.6.3, glibc-2.15-r3, 3.2.46-hardened-r1 x86_64) ================================================================= System uname: Linux-3.2.46-hardened-r1-x86_64-Intel-R-_Atom-TM-_CPU_N455_@_1.66GHz-with-gentoo-2.2 KiB Mem: 1007460 total, 291320 free KiB Swap: 2047996 total, 2040104 free Timestamp of tree: Sun, 18 Aug 2013 20:00:01 +0000 ld GNU ld (GNU Binutils) 2.23.1 app-shells/bash: 4.2_p45 dev-lang/python: 2.7.5 dev-util/cmake: 2.8.10.2-r2 dev-util/pkgconfig: 0.28 sys-apps/baselayout: 2.2 sys-apps/openrc: 0.11.8 sys-apps/sandbox: 2.6-r1 sys-devel/autoconf: 2.13, 2.69 sys-devel/automake: 1.11.6, 1.12.6 sys-devel/binutils: 2.23.1 sys-devel/gcc: 4.6.3 sys-devel/gcc-config: 1.7.3 sys-devel/libtool: 2.4-r1 sys-devel/make: 3.82-r4 sys-kernel/linux-headers: 3.7 (virtual/os-headers) sys-libs/glibc: 2.15-r3 Repositories: gentoo ago x-portage ACCEPT_KEYWORDS="amd64" ACCEPT_LICENSE="*" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-O2 -pipe -march=atom -mtune=atom" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/share/config /usr/share/gnupg/qualified.txt /usr/share/polkit-1/actions /usr/share/themes/oxygen-gtk/gtk-2.0 /usr/share/themes/oxygen-gtk/gtk-3.0" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo" CXXFLAGS="-O2 -pipe -march=atom -mtune=atom" DISTDIR="/media/dati/portage/distfiles" EMERGE_DEFAULT_OPTS="--with-bdeps y" FCFLAGS="-O2 -pipe" FEATURES="assume-digests binpkg-logs collision-protect config-protect-if-modified distlocks ebuild-locks fixlafiles merge-sync multilib-strict news parallel-fetch preserve-libs protect-owned sandbox sfperms strict unknown-features-warn unmerge-logs unmerge-orphans userfetch userpriv usersandbox usersync" FFLAGS="-O2 -pipe" GENTOO_MIRRORS="http://distfiles.gentoo.org" LANG="it_IT.UTF-8" LDFLAGS="-Wl,-O1 -Wl,--as-needed -Wl,--hash-style=gnu" MAKEOPTS="-j2" PKGDIR="/media/dati/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --human-readable --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/media/dati/portage" PORTDIR_OVERLAY="/var/lib/layman/ago /usr/local/portage" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="X aac acl alsa amd64 berkdb bzip2 cairo cli cracklib crypt custom-cflags cxx dri fortran gdbm iconv jpeg jpeg2k kde lame mmx modules mp3 mudflap ncurses networkmanager nptl ogg opengl openmp pam pcre png qt3support qt4 readline session sse sse2 ssl symlink systemd tcpd tiff unicode vorbis zlib" ABI_X86="64" ALSA_CARDS="hda-intel" ELIBC="glibc" INPUT_DEVICES="keyboard mouse evdev synaptics" KERNEL="linux" LIBREOFFICE_EXTENSIONS="presenter-console presenter-minimizer" LINGUAS="en en_GB" OFFICE_IMPLEMENTATION="libreoffice" PHP_TARGETS="php5-4" PYTHON_SINGLE_TARGET="python2_7" PYTHON_TARGETS="python2_7" RUBY_TARGETS="ruby19 ruby18" USERLAND="GNU" VIDEO_CARDS="intel" USE_PYTHON="2.7"
It looks like Chromium crashed. You should probably use profile hardened/linux/amd64/no-multilib if you are using hardened kernel.
(In reply to wbrana from comment #1) > You should probably use profile hardened/linux/amd64/no-multilib > if you are using hardened kernel. For which reason?
You have probably non-hardened userspace with current profile which isn't compatible with hardened kernel. Conversion to full hardened userspace probably needs rebuild of most/all packages in correct order (1.gcc 2. glibc 3. others or something like that) after switching profile. More reliable way would be reinstall using hardened stage3. This crash can be also caused by some bug in Chromium or it was miscompiled because e.g. -march=atom -mtune=atom.
(In reply to wbrana from comment #3) > You have probably non-hardened userspace with current profile which isn't > compatible with hardened kernel. From where this assumption is come from? Please also avoid to list the steps since I don't need them.
You don't have hardened and pax_kernel in USE flags. Switching to hardened profile should add these flags automatically.
(In reply to wbrana from comment #5) > You don't have hardened and pax_kernel in USE flags. Switching to hardened > profile should add these flags automatically. Grsecurity/pax is not designed to be used forced with the hardened toolchain. I don't need the hardened profile here nor the hardened IUSE. The pax_kernel IUSE in this case is not relevant.
Agostino, it'd be great to obtain a stack trace from the browser if you can. Some helpful instructions can be found at https://code.google.com/p/chromium/wiki/LinuxDebugging It'd also be useful to know whether it's the main browser process, a renderer, or extension/app crashing.
(In reply to Paweł Hajdan, Jr. from comment #7) > Agostino, it'd be great to obtain a stack trace from the browser if you can. > > Some helpful instructions can be found at > https://code.google.com/p/chromium/wiki/LinuxDebugging > > It'd also be useful to know whether it's the main browser process, a > renderer, or extension/app crashing. Pawel, this does not happens any time. I just found it im my log, so atm I just know that something go bad.
(In reply to Agostino Sarubbo from comment #8) > Pawel, this does not happens any time. I just found it im my log, so atm I > just know that something go bad. I'll give it a little bit more time to see if anyone else can repro, but I'll eventually close the bug if there is no more precise info.
(In reply to Paweł Hajdan, Jr. from comment #9) > I'll eventually close the bug if there is no more precise info. I gave what the log said, there are no more info about.
(In reply to Agostino Sarubbo from comment #10) > (In reply to Paweł Hajdan, Jr. from comment #9) > > I'll eventually close the bug if there is no more precise info. > > I gave what the log said, there are no more info about. Thanks, closing. If this happens another time and you're able to capture something more, feel free to re-open.