PAX: size overflow detected in function bio_split block/bio.c:1802 with Hardened Kernel Kernel version: linux-4.3.3-hardened-r4 (sys-kernel/hardened-sources-4.3.3-r4) Steps to reproduce: 1. Install Hardened Kernel with GRsecurity and PAX activated 2. Make LVM2 Thin Pool big enough (2TB in my case) 3. Create Thin volume big enough based on thin pool (1TB in my case) 4. Create FS on thin volume (XFS in my case) 5. Mount thin volume, store some date and run "fstrim -v /mountpoint" 6. The process killed and Call Trace generated. kernel log: Apr 2 14:46:56 alex-server kernel: PAX: size overflow detected in function bio_split block/bio.c:1802 cicus.688_41 max, count: 87, decl: bi_size; num: 0; context: bvec_iter; Apr 2 14:46:56 alex-server kernel: CPU: 4 PID: 6561 Comm: fstrim Not tainted 4.3.3-hardened-r4 #1 Apr 2 14:46:56 alex-server kernel: Hardware name: To Be Filled By O.E.M. To Be Filled By O.E.M./Z77E-ITX, BIOS P1.90 07/12/2013 Apr 2 14:46:56 alex-server kernel: 000000000000070a ffffc9001326b7b8 ffffffffa1463b85 ffffffffa798ca87 Apr 2 14:46:56 alex-server kernel: ffffc9001326b7e8 ffffffffa11e284e ffff8800c40a2b00 ffff8800c40a3100 Apr 2 14:46:56 alex-server kernel: 00000000fffd2000 00000000007ffe90 ffffc9001326b820 ffffffffa142250c Apr 2 14:46:56 alex-server kernel: Call Trace: Apr 2 14:46:56 alex-server kernel: [<ffffffffa1463b85>] dump_stack+0x44/0x5f Apr 2 14:46:56 alex-server kernel: [<ffffffffa11e284e>] report_size_overflow+0x6e/0x80 Apr 2 14:46:56 alex-server kernel: [<ffffffffa142250c>] bio_split+0xcc/0x100 Apr 2 14:46:56 alex-server kernel: [<ffffffffa142f3c5>] blk_queue_split+0x3a5/0x500 Apr 2 14:46:56 alex-server kernel: [<ffffffffa1426906>] ? generic_make_request_checks+0x2d6/0x450 Apr 2 14:46:56 alex-server kernel: [<ffffffffa161a7ac>] dm_make_request+0x4c/0xe0 Apr 2 14:46:56 alex-server kernel: [<ffffffffa1427dca>] generic_make_request+0xba/0xf0 Apr 2 14:46:56 alex-server kernel: [<ffffffffa1427e71>] submit_bio+0x71/0x160 Apr 2 14:46:56 alex-server kernel: [<ffffffffa13b623d>] ? xfs_trans_read_buf_map+0x9d/0x1b0 Apr 2 14:46:56 alex-server kernel: [<ffffffffa143119f>] blkdev_issue_discard+0x20f/0x550 Apr 2 14:46:56 alex-server kernel: [<ffffffffa138710d>] ? xfs_extent_busy_search+0x7d/0xb0 Apr 2 14:46:56 alex-server kernel: [<ffffffffa1385f60>] xfs_trim_extents+0x250/0x430 Apr 2 14:46:56 alex-server kernel: [<ffffffffa1386354>] xfs_ioc_trim+0x214/0x4c0 Apr 2 14:46:56 alex-server kernel: [<ffffffffa1392464>] xfs_file_ioctl+0x1384/0x1a10 Apr 2 14:46:56 alex-server kernel: [<ffffffffa1397374>] ? xfs_iunlock+0x44/0xa0 Apr 2 14:46:56 alex-server kernel: [<ffffffffa13e5ad0>] ? avc_has_extended_perms+0x70/0x3f0 Apr 2 14:46:56 alex-server kernel: [<ffffffffa11f6cd9>] ? dput+0x39/0x260 Apr 2 14:46:56 alex-server kernel: [<ffffffffa11d9004>] ? do_dentry_open+0x234/0x310 Apr 2 14:46:56 alex-server kernel: [<ffffffffa11e82a4>] ? terminate_walk+0x74/0x100 Apr 2 14:46:56 alex-server kernel: [<ffffffffa11ebf68>] ? path_openat+0x378/0x1520 Apr 2 14:46:56 alex-server kernel: [<ffffffffa13e5f4e>] ? avc_has_perm+0x4e/0x130 Apr 2 14:46:56 alex-server kernel: [<ffffffffa11f128a>] do_vfs_ioctl+0x4ea/0x860 Apr 2 14:46:56 alex-server kernel: [<ffffffffa10e494f>] ? vtime_account_user+0x3f/0x70 Apr 2 14:46:56 alex-server kernel: [<ffffffffa13eea1b>] ? selinux_file_ioctl+0x4b/0xd0 Apr 2 14:46:56 alex-server kernel: [<ffffffffa13e2880>] ? security_file_ioctl+0x50/0x70 Apr 2 14:46:56 alex-server kernel: [<ffffffffa11f167a>] SyS_ioctl+0x7a/0x90 Apr 2 14:46:56 alex-server kernel: [<ffffffffa17713af>] entry_SYSCALL_64_fastpath+0x16/0x89 Apr 2 14:46:56 alex-server kernel: [<ffffffffa1771235>] ? pax_exit_kernel_user+0x35/0x140
Do you have any new info?
hardened-sources does not supported antmore. I close the bug.