Hi!
On Fri, Mar 06, 2009 at 03:25:16PM -0800, Ned Ludd wrote:
> FYI.. PaX Team maintains the PaX kernel and has little control over what
> fixes go into the "next" hardened-sources. Also seems to me a little
> strange that the PaX Team would have to put a work-around in the kernel
> for a bug in g
On Sat, 2009-03-07 at 00:57 +0200, Alex Efros wrote:
> Hi!
>
> On Fri, Mar 06, 2009 at 11:12:59PM +0200, pagee...@freemail.hu wrote:
> > ah crap, i know what it is. it's a several years old glibc bug where someone
> > put a certain variable into the RELRO segment but forgot that it'll be
> > writ
Hi!
On Fri, Mar 06, 2009 at 11:12:59PM +0200, pagee...@freemail.hu wrote:
> ah crap, i know what it is. it's a several years old glibc bug where someone
> put a certain variable into the RELRO segment but forgot that it'll be written
> to later when a library with RWE GNU_STACK is loaded. the work
On 6 Mar 2009 at 23:51, Alex Efros wrote:
> When I run apache for the first time after reboot - without strace/core,
> just to see is it crash - I got this in kernel log:
>
> 2009-03-06_20:48:56.60108 kern.info: apache2[4621]: segfault at
> 4d554ed0 ip 4d541399 sp 594130d0 error 7 in ld-2
Hi!
On Fri, Mar 06, 2009 at 07:28:17PM +0200, pagee...@freemail.hu wrote:
> it's always the latter ;), i need to make sure it's a PaX problem.
Ok. With this kernel, using pax-linux-2.6.28.7-test19.patch, I was able to
reproduce issues with apache/php/{ioncube,zendoptimizer} and perl module
Math::
On 6 Mar 2009 at 17:13, Alex Efros wrote:
> Two questions:
> 1) Is "2.6.28.7 and PaX alone" mean hardened-sources-2.6.28 with
> everything except PaX switched off, or vanilla-sources-2.6.28.7 manually
> patched with latests PaX?
it's always the latter ;), i need to make sure it's a PaX problem.
Hi!
On Fri, Mar 06, 2009 at 09:15:36AM +0200, pagee...@freemail.hu wrote:
> two things i'd like you to try:
>
> 1. 2.6.28.7 and PaX alone
> 2. get coredumps and analyze them for the usual things, to see why the
> segfaults
>occured. if that doesn't point to anything, maybe try an strace as w
On 6 Mar 2009 at 5:57, Alex Efros wrote:
> First issue: many perl scripts (including FastCGI servers) failed to start
> with segmentation fault. See http://bugs.gentoo.org/show_bug.cgi?id=261357
> for details and ugly workarounds.
>
> Second issue: apache failed to start with segmentation fault.
