You are not logged in.
Hello,
whenver I boot the linux-grsec kernel I'm not able to start a specific Windows application which works flawlessly with the normal kernel.
journalctl reports:
Mai 02 00:00:57 MYARCH kernel: grsec: denied ptrace of /usr/bin/wine-preloader(TPW.EXE:4493) by /usr/bin/wineserver[wineserver:4454] uid/euid:1000/1000 gid/egid:100/100, parent /usr/lib/systemd/systemd[systemd:1] uid/euid:0/0 gid/egid:0/0
Mai 02 00:01:57 MYARCH kernel: grsec: denied ptrace of /usr/bin/wine-preloader(Broker.exe:4611) by /usr/bin/wineserver[wineserver:4454] uid/euid:1000/1000 gid/egid:100/100, parent /usr/lib/systemd/systemd[systemd:1] uid/euid:0/0 gid/egid:0/0
I guess that this could be avoided by disabling
kernel.grsecurity.harden_ptrace
and/or
kernel.grsecurity.ptrace_readexec
in /etc/sysctl.d/05-grsecurity-conf. But that's not what I really want. Is there another way how to circumvent this problem?
Offline
I'm seeing a similar problem with a Steam game that grsec occasionally causes to crash. Here's cllp from the journal:
y 07 03:31:35 x220 kernel: CPU1: Core temperature above threshold, cpu clock throttled (total events = 192641)
May 07 03:31:35 x220 kernel: CPU0: Core temperature above threshold, cpu clock throttled (total events = 192641)
May 07 03:31:36 x220 kernel: CPU0: Core temperature/speed normal
May 07 03:31:36 x220 kernel: CPU1: Core temperature/speed normal
May 07 03:34:20 x220 kernel: mce: [Hardware Error]: Machine check events logged
May 07 03:34:28 x220 kernel: grsec: denied ptrace of /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux(dota_linux:4405) by /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4679] uid/euid:1000/1000 gid/egid:1000/1000, parent /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4405] uid/euid:1000/1000 gid/egid:1000/1000
May 07 03:34:29 x220 kernel: grsec: denied ptrace of /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux(dota_linux:4406) by /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4679] uid/euid:1000/1000 gid/egid:1000/1000, parent /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4405] uid/euid:1000/1000 gid/egid:1000/1000
May 07 03:34:29 x220 kernel: grsec: denied ptrace of /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux(dota_linux:4407) by /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4679] uid/euid:1000/1000 gid/egid:1000/1000, parent /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4405] uid/euid:1000/1000 gid/egid:1000/1000
May 07 03:34:29 x220 kernel: grsec: denied ptrace of /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux(dota_linux:4412) by /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4679] uid/euid:1000/1000 gid/egid:1000/1000, parent /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4405] uid/euid:1000/1000 gid/egid:1000/1000
May 07 03:34:29 x220 kernel: grsec: denied ptrace of /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux(dota_linux:4413) by /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4679] uid/euid:1000/1000 gid/egid:1000/1000, parent /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4405] uid/euid:1000/1000 gid/egid:1000/1000
May 07 03:34:29 x220 kernel: grsec: denied ptrace of /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux(SDLAudioDev2:4415) by /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4679] uid/euid:1000/1000 gid/egid:1000/1000, parent /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4405] uid/euid:1000/1000 gid/egid:1000/1000
May 07 03:34:29 x220 kernel: grsec: denied ptrace of /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux(dota_linux:4417) by /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4679] uid/euid:1000/1000 gid/egid:1000/1000, parent /home/nthrow/.local/share/Steam/SteamApps/common/dota 2 beta/dota_linux[dota_linux:4405] uid/euid:1000/1000 gid/egid:1000/1000
May 07 03:34:29 x220 kernel: grsec: more alerts, logging disabled for 10 seconds
May 07 03:34:43 x220 systemd-coredump[4680]: Core too large, core will not be stored.
May 07 03:34:43 x220 systemd-coredump[4680]: Process 4405 (dota_linux) dumped core.Offline
please DON'T disable ptrace protection globally, but just for needed (and trusted) program; see http://askubuntu.com/questions/146160/w … 970#153970
TL;DR:
as root(?) run:
setcap cap_sys_ptrace=eip /usr/bin/wineserver
setcap cap_sys_ptrace=eip /usr/bin/wine-preloader
Last edited by lesto (2014-06-04 23:48:43)
Offline
please DON'T disable ptrace protection globally, but just for needed (and trusted) program; see http://askubuntu.com/questions/146160/w … 970#153970
TL;DR:
as root(?) run:
setcap cap_sys_ptrace=eip /usr/bin/wineserver
setcap cap_sys_ptrace=eip /usr/bin/wine-preloader
Thanks for your reply - very interesting. However, after executing those commands (with sudo) I still get the error messages from my first post.
Offline