Bug#245568: marked as done (libc6: causes errors on linux-2.6.5 with PaX and CONFIG_PAX_NOVSYSCALL)
Your message dated Sat, 24 Apr 2004 21:37:45 +0900 with message-id [EMAIL PROTECTED] and subject line Bug#245568: duplicate has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 23 Apr 2004 20:44:58 + From [EMAIL PROTECTED] Fri Apr 23 13:44:58 2004 Return-path: [EMAIL PROTECTED] Received: from ares.penguinhosting.net [205.231.149.48] (qmailr) by spohr.debian.org with smtp (Exim 3.35 1 (Debian)) id 1BH7Xe-0001GI-00; Fri, 23 Apr 2004 13:44:58 -0700 Received: (qmail 7189 invoked by uid 1000); 23 Apr 2004 20:44:57 - Date: Fri, 23 Apr 2004 20:37:44 + From: Ian Gulliver [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: libc6: causes errors on linux-2.6.5 with PaX and CONFIG_PAX_NOVSYSCALL Message-ID: [EMAIL PROTECTED] Mime-Version: 1.0 Content-Disposition: inline X-Operating-System: Linux ares.penguinhosting.net 2.4.26-grsec User-Agent: Mutt/1.5.5.1+cvs20040105i Content-Type: multipart/postage; boundary=d15dce57a1de9d0b9c64e119509a8246 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2004_03_25 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-1.5 required=4.0 tests=BAYES_10 autolearn=no version=2.60-bugs.debian.org_2004_03_25 X-Spam-Level: X-CrossAssassin-Score: 1 --d15dce57a1de9d0b9c64e119509a8246 Content-Type: multipart/signed; micalg=pgp-sha1; protocol=application/pgp-signature; boundary=GID0FwUMdk1T2AWN --GID0FwUMdk1T2AWN Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Package: libc6 Version: 2.3.2.ds1-12 Severity: important Tags: sid On Linux 2.6.5 with the PaX patch applied: http://pax.grsecurity.net/pax-linux-2.6.5-200404181525.patch and the CONFIG_PAX_NOVSYSCALL flag enabled, the system dies during startup with a series of PaX errors: PAX: execution attempt in: anonymous mapping, 5a9b9000-5a9bc000 e000 PAX: terminating task: /sbin/init(init):1, uid/euid: 0/0, PC: 5a9bb6d4, SP: 5a9bb404 PAX: bytes at PC: 58 b8 77 00 00 00 cd 80 00 00 00 00 20 b7 9b 5a 05 00 00 00 PAX: bytes at SP: 0011 0033 007b 007b 5a9bb718 5a9bb718 5a9bb6e0 000b 5a9bb720 fffc 24a99398 0073 0246 5a9bb6e0 007b Kernel panic: Attempted to kill init! The PaX maintainer diagnoses this as a glibc problem, saying: [20:19:32] pipacs flamingcow,that's the sigreturn trampoline [20:19:56] pipacs wihch glibc should provide and use itself but instead it entirely relies on the kernel's vsyscall page [20:20:16] flamingcow can i quote you on that? [20:20:18] pipacs or when that's not available, it falls back on whatever the kernel used to provide [20:20:28] pipacs which happens to be on the (non-exec) stack [20:20:33] pipacs the rest you can see yourself ;P [20:20:43] pipacs sure, just quote it entirely [20:20:48] pipacs so that they know what to fix [20:21:10] pipacs basically, they should fall back onto glibc's own sigreturn code and not that of the kernel's when vsyscall is not enabled On the same kernel, simply disabling NOVSYSCALL causes the system to work properly. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.5 Locale: LANG=C, LC_CTYPE=C Versions of packages libc6 depends on: ii libdb1-compat 2.1.3-7The Berkeley database routines [gl -- no debconf information --GID0FwUMdk1T2AWN Content-Type: application/pgp-signature; name=signature.asc Content-Description: Digital signature Content-Disposition: inline -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAiX6XefI+qeoOjxURAuIYAKCDec05HZRi+1TfFHMV+brIgk6u4QCfff4i UcnsdrFtRm1Sfl9SD88zsVY= =akUV -END PGP SIGNATURE- --GID0FwUMdk1T2AWN-- --d15dce57a1de9d0b9c64e119509a8246 Content-Type: application/postage-hashcash Version: 1.1 Mint-Hash: FH0Kk4Le83HbYvehOFk92huwpeQ= To: [EMAIL PROTECTED] Date: 20040423T20:37:44 Amount: 24 14b7565 --d15dce57a1de9d0b9c64e119509a8246-- --- Received: (at 245568-done) by bugs.debian.org; 24 Apr 2004 12:37:46 + From [EMAIL PROTECTED] Sat Apr 24 05:37:46 2004 Return-path: [EMAIL PROTECTED] Received: from omega.webmasters.gr.jp (webmasters.gr.jp) [218.44.239.78] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1BHMPi-0004FP-00; Sat, 24 Apr 2004 05:37:46 -0700 Received: from
Bug#245568: marked as done (libc6: causes errors on linux-2.6.5 with PaX and CONFIG_PAX_NOVSYSCALL)
Your message dated Sat, 24 Apr 2004 21:37:45 +0900 with message-id [EMAIL PROTECTED] and subject line Bug#245568: duplicate has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 23 Apr 2004 20:44:58 + From [EMAIL PROTECTED] Fri Apr 23 13:44:58 2004 Return-path: [EMAIL PROTECTED] Received: from ares.penguinhosting.net [205.231.149.48] (qmailr) by spohr.debian.org with smtp (Exim 3.35 1 (Debian)) id 1BH7Xe-0001GI-00; Fri, 23 Apr 2004 13:44:58 -0700 Received: (qmail 7189 invoked by uid 1000); 23 Apr 2004 20:44:57 - Date: Fri, 23 Apr 2004 20:37:44 + From: Ian Gulliver [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: libc6: causes errors on linux-2.6.5 with PaX and CONFIG_PAX_NOVSYSCALL Message-ID: [EMAIL PROTECTED] Mime-Version: 1.0 Content-Disposition: inline X-Operating-System: Linux ares.penguinhosting.net 2.4.26-grsec User-Agent: Mutt/1.5.5.1+cvs20040105i Content-Type: multipart/postage; boundary=d15dce57a1de9d0b9c64e119509a8246 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2004_03_25 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-1.5 required=4.0 tests=BAYES_10 autolearn=no version=2.60-bugs.debian.org_2004_03_25 X-Spam-Level: X-CrossAssassin-Score: 1 --d15dce57a1de9d0b9c64e119509a8246 Content-Type: multipart/signed; micalg=pgp-sha1; protocol=application/pgp-signature; boundary=GID0FwUMdk1T2AWN --GID0FwUMdk1T2AWN Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Package: libc6 Version: 2.3.2.ds1-12 Severity: important Tags: sid On Linux 2.6.5 with the PaX patch applied: http://pax.grsecurity.net/pax-linux-2.6.5-200404181525.patch and the CONFIG_PAX_NOVSYSCALL flag enabled, the system dies during startup with a series of PaX errors: PAX: execution attempt in: anonymous mapping, 5a9b9000-5a9bc000 e000 PAX: terminating task: /sbin/init(init):1, uid/euid: 0/0, PC: 5a9bb6d4, SP: 5a9bb404 PAX: bytes at PC: 58 b8 77 00 00 00 cd 80 00 00 00 00 20 b7 9b 5a 05 00 00 00 PAX: bytes at SP: 0011 0033 007b 007b 5a9bb718 5a9bb718 5a9bb6e0 000b 5a9bb720 fffc 24a99398 0073 0246 5a9bb6e0 007b Kernel panic: Attempted to kill init! The PaX maintainer diagnoses this as a glibc problem, saying: [20:19:32] pipacs flamingcow,that's the sigreturn trampoline [20:19:56] pipacs wihch glibc should provide and use itself but instead it entirely relies on the kernel's vsyscall page [20:20:16] flamingcow can i quote you on that? [20:20:18] pipacs or when that's not available, it falls back on whatever the kernel used to provide [20:20:28] pipacs which happens to be on the (non-exec) stack [20:20:33] pipacs the rest you can see yourself ;P [20:20:43] pipacs sure, just quote it entirely [20:20:48] pipacs so that they know what to fix [20:21:10] pipacs basically, they should fall back onto glibc's own sigreturn code and not that of the kernel's when vsyscall is not enabled On the same kernel, simply disabling NOVSYSCALL causes the system to work properly. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.5 Locale: LANG=C, LC_CTYPE=C Versions of packages libc6 depends on: ii libdb1-compat 2.1.3-7The Berkeley database routines [gl -- no debconf information --GID0FwUMdk1T2AWN Content-Type: application/pgp-signature; name=signature.asc Content-Description: Digital signature Content-Disposition: inline -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAiX6XefI+qeoOjxURAuIYAKCDec05HZRi+1TfFHMV+brIgk6u4QCfff4i UcnsdrFtRm1Sfl9SD88zsVY= =akUV -END PGP SIGNATURE- --GID0FwUMdk1T2AWN-- --d15dce57a1de9d0b9c64e119509a8246 Content-Type: application/postage-hashcash Version: 1.1 Mint-Hash: FH0Kk4Le83HbYvehOFk92huwpeQ= To: [EMAIL PROTECTED] Date: 20040423T20:37:44 Amount: 24 14b7565 --d15dce57a1de9d0b9c64e119509a8246-- --- Received: (at 245568-done) by bugs.debian.org; 24 Apr 2004 12:37:46 + From [EMAIL PROTECTED] Sat Apr 24 05:37:46 2004 Return-path: [EMAIL PROTECTED] Received: from omega.webmasters.gr.jp (webmasters.gr.jp) [218.44.239.78] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1BHMPi-0004FP-00; Sat, 24 Apr 2004 05:37:46 -0700 Received: from
