When running a hardened -sources-4.2.6-r7 kernel from time to time PAX reports a size overflow in the reiserfs code, whihc results in a hang up of the system after a short time (except /home all partitions are reiserfs formatted). The dmesg output reads: [ 498.604340] PAX: size overflow detected in function leaf_paste_entries fs/reiserfs/lbalance.c:1387 cicus.214_126 min, count: 68, decl: deh_location; num: 0; context: reiserfs_de_head; [ 498.653443] CPU: 0 PID: 2029 Comm: rvim Not tainted 4.2.6-hardened-r7-gnu #1 [ 498.653445] Hardware name: Gigabyte Technology Co., Ltd. GA-970A-UD3/GA-970A-UD3, BIOS F6 05/30/2012 [ 498.653446] ffffffff81bd7b59 115c8d618f209c60 0000000000000000 ffffffff8192c911 [ 498.653449] ffffffff81bd7b85 ffffffff811c0395 ffffffffffff4111 ffffffffffffff70 [ 498.653451] 00000000000000d8 ffff88009d5c7260 ffff88009d5c7254 ffffffff812729d7 [ 498.653453] Call Trace: [ 498.653460] [<ffffffff8192c911>] ? dump_stack+0x40/0x54 [ 498.653463] [<ffffffff811c0395>] ? report_size_overflow+0x35/0x40 [ 498.653466] [<ffffffff812729d7>] ? leaf_paste_entries+0x497/0x640 [ 498.653468] [<ffffffff81272d19>] ? leaf_copy_dir_entries+0x199/0x730 [ 498.653470] [<ffffffff8127335c>] ? leaf_item_bottle+0xac/0x750 [ 498.653473] [<ffffffff814e11e2>] ? radix_tree_lookup_slot+0x32/0x60 [ 498.653475] [<ffffffff81273fb9>] ? leaf_move_items+0x5b9/0xbd0 [ 498.653477] [<ffffffff81274612>] ? leaf_shift_left+0x42/0xd0 [ 498.653479] [<ffffffff81258dad>] ? balance_leaf+0xa0d/0x3b70 [ 498.653481] [<ffffffff8192ff69>] ? mutex_lock+0x9/0x30 [ 498.653483] [<ffffffff81280ade>] ? reiserfs_prepare_for_journal+0x2e/0x80 [ 498.653485] [<ffffffff8126923b>] ? fix_nodes+0xcbb/0x1f70 [ 498.653486] [<ffffffff8125bfa7>] ? do_balance+0x97/0x1c0 [ 498.653489] [<ffffffff81279dd5>] ? reiserfs_insert_item+0x2c5/0x3a0 [ 498.653491] [<ffffffff8121dc39>] ? __dquot_free_space+0x49/0x2e0 [ 498.653494] [<ffffffff8126d455>] ? add_save_link+0x1d5/0x380 [ 498.653496] [<ffffffff8125d118>] ? reiserfs_unlink+0x2b8/0x340 [ 498.653498] [<ffffffff811c87c5>] ? vfs_unlink+0x135/0x1c0 [ 498.653500] [<ffffffff814d2c83>] ? generic_fs_handler+0x43/0xc0 [ 498.653502] [<ffffffff811c8b1c>] ? do_unlinkat+0x2cc/0x370 [ 498.653504] [<ffffffff819323a8>] ? entry_SYSCALL_64_fastpath+0x12/0x88 Reproducible: Always emerge --info hardened-sources Portage 2.2.26 (python 3.5.0-final-0, hardened/linux/amd64/no-multilib, gcc-4.9.3, glibc-2.22-r1, 4.2.6-hardened-r4-gnu x86_64) ================================================================= System Settings ================================================================= System uname: Linux-4.2.6-hardened-r4-gnu-x86_64-AMD_FX-tm-8120_Eight-Core_Processor-with-gentoo-2.2 KiB Mem: 8144124 total, 6707576 free KiB Swap: 4194300 total, 4194300 free sh bash 4.3_p42 ld GNU ld (Gentoo 2.25.1 p1.1) 2.25.1 app-shells/bash: 4.3_p42::gentoo dev-lang/perl: 5.22.0::gentoo dev-lang/python: 2.7.10-r3::gentoo, 3.4.3-r2::gentoo, 3.5.0-r1::gentoo dev-util/cmake: 3.4.1::gentoo dev-util/pkgconfig: 0.29::gentoo sys-apps/baselayout: 2.2::gentoo sys-apps/openrc: 0.19::gentoo sys-apps/sandbox: 2.9::gentoo sys-devel/autoconf: 2.13::gentoo, 2.69-r1::gentoo sys-devel/automake: 1.11.6-r1::gentoo, 1.13.4::gentoo, 1.14.1::gentoo, 1.15::gentoo sys-devel/binutils: 2.25.1-r1::gentoo sys-devel/gcc: 4.9.3::gentoo sys-devel/gcc-config: 1.8::gentoo sys-devel/libtool: 2.4.6-r1::gentoo sys-devel/make: 4.1-r1::gentoo sys-kernel/linux-headers: 4.3::gentoo (virtual/os-headers) sys-libs/glibc: 2.22-r1::x-portage Repositories: gentoo location: /usr/portage sync-type: rsync sync-uri: rsync://rsync.gentoo.org/gentoo-portage priority: -1000 x-portage location: /usr/local/portage masters: gentoo priority: 0 ACCEPT_KEYWORDS="amd64 ~amd64" ACCEPT_LICENSE="@FREE" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-march=athlon-fx -O2 -pipe" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/share/config /usr/share/gnupg/qualified.txt" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/dconf /etc/env.d /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/sandbox.d /etc/terminfo /etc/texmf/language.dat.d /etc/texmf/language.def.d /etc/texmf/updmap.d /etc/texmf/web2c" CXXFLAGS="-march=athlon-fx -O2 -pipe" DISTDIR="/var/distfiles" FCFLAGS="-O2 -pipe" FEATURES="assume-digests binpkg-logs config-protect-if-modified distlocks ebuild-locks fixlafiles merge-sync news parallel-fetch preserve-libs protect-owned sandbox sfperms splitdebug strict unknown-features-warn unmerge-logs unmerge-orphans userfetch userpriv usersandbox usersync xattr" FFLAGS="-O2 -pipe" GENTOO_MIRRORS="http://distfiles.gentoo.org" LANG="de_DE.utf8" LDFLAGS="-Wl,-O1 -Wl,--as-needed" MAKEOPTS="-j3" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --omit-dir-times --compress --force --whole-file --delete --stats --human-readable --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" USE="X acl alsa amd64 bash-completion berkdb bzip2 caps cli cracklib crypt cxx directfb dri gdbm gif gnutls hardened iconv ipv6 jpeg justify libressl matroska mmx mmxext modules ncurses nls nptl ogg openmp pam pax_kernel pcre pie png qt5 readline seccomp session sse sse2 ssl ssp tcpd theora threads tiff unicode urandom vorbis xattr xtpax zlib" ABI_X86="64" ALSA_CARDS="ali5451 als4000 atiixp atiixp-modem bt87x ca0106 cmipci emu10k1x ens1370 ens1371 es1938 es1968 fm801 hda-intel intel8x0 intel8x0m maestro3 trident usb-audio via82xx via82xx-modem ymfpci" APACHE2_MODULES="authn_core authz_core socache_shmcb unixd actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache cgi cgid dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" CALLIGRA_FEATURES="kexi words flow plan sheets stage tables krita karbon braindump author" CAMERAS="ptp2" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" CPU_FLAGS_X86="mmx mmxext sse sse2" ELIBC="glibc" GPSD_PROTOCOLS="ashtech aivdm earthmate evermore fv18 garmin garmintxt gpsclock itrax mtk3301 nmea ntrip navcom oceanserver oldstyle oncore rtcm104v2 rtcm104v3 sirf superstar2 timing tsip tripmate tnt ublox ubx" INPUT_DEVICES="keyboard mouse evdev" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LIBREOFFICE_EXTENSIONS="presenter-console presenter-minimizer" LINGUAS="de de_DE ja" OFFICE_IMPLEMENTATION="libreoffice" PHP_TARGETS="php5-5" PYTHON_SINGLE_TARGET="python3_5" PYTHON_TARGETS="python3_5" RUBY_TARGETS="ruby22" USERLAND="GNU" VIDEO_CARDS="vesa fbdev" XTABLES_ADDONS="quota2 psd pknock lscan length2 ipv4options ipset ipp2p iface geoip fuzzy condition tee tarpit sysrq steal rawnat logmark ipmark dhcpmac delude chaos account" Unset: CC, CPPFLAGS, CTARGET, CXX, EMERGE_DEFAULT_OPTS, INSTALL_MASK, LC_ALL, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS, USE_PYTHON ================================================================= Package Settings ================================================================= sys-kernel/hardened-sources-4.2.6-r7::gentoo was built with the following: USE="deblob symlink -build"
We've had a few of these. Can you test hardened-sources-4.2.7.
this is a new one, would be nice to get a backtrace with frame pointers enabled.
Thanks for the report, it will be fixed in the next grsec patch.
(In reply to Emese Revfy from comment #3) > Thanks for the report, it will be fixed in the next grsec patch. I'm assuming this is fixed in our hardened-sources-4.3.3-r2. That bundles grsecurity-3.1-4.3.3-201512222129. Can anyone confirm.
please reopen if this is still a problem in hardened-sources-4.3.3-r4
