Hi!
I wonder is something was changed in handling "grsec: denied RWX mprotect"?
Previously when I see this in kernel log it usually result in killing app
(and I've to run `paxctl-ng -m /that/app`), but now it looks like this
doesn't happens anymore. For example:
# eselect opengl list
Available Op
On Sat, 1 Nov 2014 12:08:23 +0200
Alex Efros wrote:
> Hi!
>
> I wonder is something was changed in handling "grsec: denied RWX
> mprotect"? Previously when I see this in kernel log it usually result
> in killing app (and I've to run `paxctl-ng -m /that/app`), but now it
> looks like this doesn't
There have been changes in the toolchain:
https://sourceware.org/bugzilla/show_bug.cgi?id=12492
Application also handle these situations nowdays and survive the denial
instead of crashing.
Like clamav developers made the software aware of such a situation:
https://bugs.gentoo.org/show_bug.cgi?id=3
On Mon, Oct 27, 2014 at 11:19 PM, Anthony G. Basile
wrote:
> On 10/23/14 09:35, John Tate wrote:
>>
>> I just realized this error is because of the attempt to dump core. It
>> is not why nginx is crashing.
>>
>> Sorry.
>>
>
> "RLIMIT_CORE against limit 0" is just grsec telling you that nginx tried
В Sat, 1 Nov 2014 11:21:51 +0100
Amadeusz Sławiński пишет:
> On Sat, 1 Nov 2014 12:08:23 +0200
> Alex Efros wrote:
>
> > Hi!
> >
> > I wonder is something was changed in handling "grsec: denied RWX
> > mprotect"? Previously when I see this in kernel log it usually
> > result in killing app (an
