[gentoo-hardened] SELinux - Need urgent help - gentoo-hardened

From:	Tiago Lima <tiago.lima@×××××.pt>
To:	gentoo-hardened@g.o
Subject:	[gentoo-hardened] SELinux - Need urgent help
Date:	Fri, 07 Nov 2003 10:06:55
Message-Id:	`00f501c3a516$df149f00$0608a8c0@ladybug`

1

I'm sorry to bother you all...

2

3

But I have a major problem with selinux...

4

5

As far as I can tell it was working fine till I emerged it -De to recompile

6

everything because of a kernel upgrade to version .22.

7

8

Now ls or hangs or gives a segmentation fault.

9

10

I know, I probably just stupid, but I need help. I need theses machines up

11

and running now...

12

13

Here is the strace output of ls:

14

15

      Code:

16

      execve("/bin/ls", ["ls", "-R", "suidfiles.txt", "temp",

17

"writable.txt", "writable2.txt"], [/* 25 vars */]) = 0

18

      uname({sys="Linux", node="Hostname", ...}) = 0

19

      brk(0)                                  = 0x8061a90

20

      open("/etc/ld.so.preload", O_RDONLY)    = -1 ENOENT (No such file or

21

directory)

22

      open("/etc/ld.so.cache", O_RDONLY)      = 3

23

      fstat64(3, {st_mode=S_IFREG|0644, st_size=9269, ...}) = 0

24

      mmap2(NULL, 9269, PROT_READ, MAP_PRIVATE, 3, 0) = 0x4cd85000

25

      close(3)                                = 0

26

      open("/lib/libselinux.so.1", O_RDONLY)  = 3

27

      read(3,

28

"\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0@\34\0\000"..., 512) = 512

29

      fstat64(3, {st_mode=S_IFREG|0755, st_size=34225, ...}) = 0

30

      mmap2(NULL, 26964, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) =

31

0x4cd88000

32

      mmap2(0x4cd8e000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED,

33

3, 0x6) = 0x4cd8e000

34

      close(3)                                = 0

35

      open("/lib/librt.so.1", O_RDONLY)       = 3

36

      read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\0\34\0"...,

37

512) = 512

38

      fstat64(3, {st_mode=S_IFREG|0755, st_size=38178, ...}) = 0

39

      mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,

40

0) = 0x4cd8f000

41

      mmap2(NULL, 75928, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) =

42

0x4cd90000

43

      mmap2(0x4cd97000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED,

44

3, 0x6) = 0x4cd97000

45

      mmap2(0x4cd98000, 43160, PROT_READ|PROT_WRITE,

46

MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x4cd98000

47

      close(3)                                = 0

48

      open("/lib/libc.so.6", O_RDONLY)        = 3

49

      read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\200[\1"...,

50

512) = 512

51

      fstat64(3, {st_mode=S_IFREG|0755, st_size=1503913, ...}) = 0

52

      mmap2(NULL, 1269284, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) =

53

0x4cda3000

54

      mmap2(0x4ced3000, 16384, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED,

55

3, 0x12f) = 0x4ced3000

56

      mmap2(0x4ced7000, 7716, PROT_READ|PROT_WRITE,

57

MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x4ced7000

58

      close(3)                                = 0

59

      open("/lib/libpthread.so.0", O_RDONLY)  = 3

60

      read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\200B\0"...,

61

512) = 512

62

      fstat64(3, {st_mode=S_IFREG|0755, st_size=87420, ...}) = 0

63

      mmap2(NULL, 331296, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) =

64

0x4ced9000

65

      mmap2(0x4cee7000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED,

66

3, 0xe) = 0x4cee7000

67

      mmap2(0x4cee8000, 269856, PROT_READ|PROT_WRITE,

68

MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x4cee8000

69

      close(3)                                = 0

70

      munmap(0x4cd85000, 9269)                = 0

71

      set_thread_area({entry_number:-1 -> -1, base_addr:0x4cee7060,

72

limit:1048575, seg_32bit:1, contents:0, read_exec_only:0, limit_in_pages:1,

73

seg_not_present:0, useable:1}) = -1 ENOSYS (Function not implemented)

74

      modify_ldt(1, {entry_number:0, base_addr:0x4cee7060, limit:1048575,

75

seg_32bit:1, contents:0, read_exec_only:0, limit_in_pages:1,

76

seg_not_present:0, useable:1}, 16) = 0

77

      getpid()                                = 1177

78

      rt_sigaction(SIGRTMIN, {0x4cee12d0, [], SA_RESTORER, 0x4cdcd368},

79

NULL, 8) = 0

80

      rt_sigaction(SIGRT_1, {0x4cee1420, [], SA_RESTORER, 0x4cdcd368}, NULL,

81

8) = 0

82

      rt_sigaction(SIGRT_2, {0x4cee1600, [], SA_RESTORER, 0x4cdcd368}, NULL,

83

8) = 0

84

      rt_sigprocmask(SIG_BLOCK, [RTMIN], NULL, 8) = 0

85

      rt_sigprocmask(SIG_UNBLOCK, [RT_1], NULL, 8) = 0

86

      _sysctl({{CTL_KERN, KERN_VERSION}, 2, 0xb9cf22d4, 34, (nil), 0}) = 0

87

      open("/proc/self/attr/current", O_RDONLY) = 3

88

      brk(0)                                  = 0x8061a90

89

      brk(0x8082a90)                          = 0x8082a90

90

      brk(0)                                  = 0x8082a90

91

      brk(0x8083000)                          = 0x8083000

92

      read(3, "user_u:user_r:user_t\0", 4095) = 21

93

      close(3)                                = 0

94

      ioctl(1, TCGETS, {B38400 opost isig icanon echo ...}) = 0

95

      ioctl(1, TIOCGWINSZ, {ws_row=56, ws_col=156, ws_xpixel=0,

96

ws_ypixel=0}) = 0

97

      stat64("suidfiles.txt", {st_mode=S_IFREG|0644, st_size=0, ...}) = 0

98

      getxattr("suidfiles.txt", "security.selinux", 0x8065b68, 255) = 32

99

      lstat64("suidfiles.txt", {st_mode=S_IFREG|0644, st_size=0, ...}) = 0

100

      lgetxattr("suidfiles.txt", "security.selinux", 0x8065c70, 255) = 32

101

      stat64("temp", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0

102

      getxattr("temp", "security.selinux", 0x8065d90, 255) = 32

103

      stat64("writable.txt", {st_mode=S_IFREG|0644, st_size=2184190, ...}) =

104

0

105

      getxattr("writable.txt", "security.selinux", 0x8065ea8, 255) = 32

106

      lstat64("writable.txt", {st_mode=S_IFREG|0644, st_size=2184190, ...})

107

= 0

108

      lgetxattr("writable.txt", "security.selinux", 0x8065fb0, 255) = 32

109

      stat64("writable2.txt", {st_mode=S_IFREG|0644, st_size=25890, ...}) =

110

0

111

      getxattr("writable2.txt", "security.selinux", 0x80660d0, 255) = 32

112

      lstat64("writable2.txt", {st_mode=S_IFREG|0644, st_size=25890, ...}) =

113

0

114

      lgetxattr("writable2.txt", "security.selinux", 0x80661d8, 255) = 32

115

      fstat64(1, {st_mode=S_IFCHR|0620, st_rdev=makedev(136, 0), ...}) = 0

116

      mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,

117

0) = 0x4cd85000

118

      write(1, "suidfiles.txt  writable.txt  wri"..., 43suidfiles.txt

119

writable.txt  writable2.txt

120

      ) = 43

121

      write(1, "\n", 1

122

      )                       = 1

123

      open("temp", O_RDONLY|O_NONBLOCK|O_LARGEFILE|O_DIRECTORY) = 3

124

      fstat64(3, {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0

125

      fcntl64(3, F_SETFD, FD_CLOEXEC)         = 0

126

      fstat64(3, {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0

127

      getdents64(3, /* 5 entries */, 4096)    = 152

128

      getdents64(3, /* 0 entries */, 4096)    = 0

129

      close(3)                                = 0

130

      write(1, "temp:\n", 6temp:

131

      )                  = 6

132

      write(1, "cvs  mcs-0.28.tar.gz  mono-0.28."..., 39cvs  mcs-0.28.tar.gz

133

mono-0.28.tar.gz

134

      ) = 39

135

      open("temp/cvs", O_RDONLY|O_NONBLOCK|O_LARGEFILE|O_DIRECTORY) = 3

136

      fstat64(3, {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0

137

      fcntl64(3, F_SETFD, FD_CLOEXEC)         = 0

138

      fstat64(3, {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0

139

      getdents64(3, /* 3 entries */, 4096)    = 80

140

      getdents64(3, /* 0 entries */, 4096)    = 0

141

      close(3)                                = 0

142

      --- SIGSEGV (Segmentation fault) @ 0 (0) --- 

143

      +++ killed by SIGSEGV +++

144

145

146

Come on gurus, kick this rookie out of this problem, please.

147

148

Thanks...

149

150

151

--

152

gentoo-hardened@g.o mailing list

1	I'm sorry to bother you all...
2
3	But I have a major problem with selinux...
4
5	As far as I can tell it was working fine till I emerged it -De to recompile
6	everything because of a kernel upgrade to version .22.
7
8	Now ls or hangs or gives a segmentation fault.
9
10	I know, I probably just stupid, but I need help. I need theses machines up
11	and running now...
12
13	Here is the strace output of ls:
14
15	Code:
16	execve("/bin/ls", ["ls", "-R", "suidfiles.txt", "temp",
17	"writable.txt", "writable2.txt"], [/* 25 vars */]) = 0
18	uname({sys="Linux", node="Hostname", ...}) = 0
19	brk(0) = 0x8061a90
20	open("/etc/ld.so.preload", O_RDONLY) = -1 ENOENT (No such file or
21	directory)
22	open("/etc/ld.so.cache", O_RDONLY) = 3
23	fstat64(3, {st_mode=S_IFREG\|0644, st_size=9269, ...}) = 0
24	mmap2(NULL, 9269, PROT_READ, MAP_PRIVATE, 3, 0) = 0x4cd85000
25	close(3) = 0
26	open("/lib/libselinux.so.1", O_RDONLY) = 3
27	read(3,
28	"\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0@\34\0\000"..., 512) = 512
29	fstat64(3, {st_mode=S_IFREG\|0755, st_size=34225, ...}) = 0
30	mmap2(NULL, 26964, PROT_READ\|PROT_EXEC, MAP_PRIVATE, 3, 0) =
31	0x4cd88000
32	mmap2(0x4cd8e000, 4096, PROT_READ\|PROT_WRITE, MAP_PRIVATE\|MAP_FIXED,
33	3, 0x6) = 0x4cd8e000
34	close(3) = 0
35	open("/lib/librt.so.1", O_RDONLY) = 3
36	read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\0\34\0"...,
37	512) = 512
38	fstat64(3, {st_mode=S_IFREG\|0755, st_size=38178, ...}) = 0
39	mmap2(NULL, 4096, PROT_READ\|PROT_WRITE, MAP_PRIVATE\|MAP_ANONYMOUS, -1,
40	0) = 0x4cd8f000
41	mmap2(NULL, 75928, PROT_READ\|PROT_EXEC, MAP_PRIVATE, 3, 0) =
42	0x4cd90000
43	mmap2(0x4cd97000, 4096, PROT_READ\|PROT_WRITE, MAP_PRIVATE\|MAP_FIXED,
44	3, 0x6) = 0x4cd97000
45	mmap2(0x4cd98000, 43160, PROT_READ\|PROT_WRITE,
46	MAP_PRIVATE\|MAP_FIXED\|MAP_ANONYMOUS, -1, 0) = 0x4cd98000
47	close(3) = 0
48	open("/lib/libc.so.6", O_RDONLY) = 3
49	read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\200[\1"...,
50	512) = 512
51	fstat64(3, {st_mode=S_IFREG\|0755, st_size=1503913, ...}) = 0
52	mmap2(NULL, 1269284, PROT_READ\|PROT_EXEC, MAP_PRIVATE, 3, 0) =
53	0x4cda3000
54	mmap2(0x4ced3000, 16384, PROT_READ\|PROT_WRITE, MAP_PRIVATE\|MAP_FIXED,
55	3, 0x12f) = 0x4ced3000
56	mmap2(0x4ced7000, 7716, PROT_READ\|PROT_WRITE,
57	MAP_PRIVATE\|MAP_FIXED\|MAP_ANONYMOUS, -1, 0) = 0x4ced7000
58	close(3) = 0
59	open("/lib/libpthread.so.0", O_RDONLY) = 3
60	read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\200B\0"...,
61	512) = 512
62	fstat64(3, {st_mode=S_IFREG\|0755, st_size=87420, ...}) = 0
63	mmap2(NULL, 331296, PROT_READ\|PROT_EXEC, MAP_PRIVATE, 3, 0) =
64	0x4ced9000
65	mmap2(0x4cee7000, 4096, PROT_READ\|PROT_WRITE, MAP_PRIVATE\|MAP_FIXED,
66	3, 0xe) = 0x4cee7000
67	mmap2(0x4cee8000, 269856, PROT_READ\|PROT_WRITE,
68	MAP_PRIVATE\|MAP_FIXED\|MAP_ANONYMOUS, -1, 0) = 0x4cee8000
69	close(3) = 0
70	munmap(0x4cd85000, 9269) = 0
71	set_thread_area({entry_number:-1 -> -1, base_addr:0x4cee7060,
72	limit:1048575, seg_32bit:1, contents:0, read_exec_only:0, limit_in_pages:1,
73	seg_not_present:0, useable:1}) = -1 ENOSYS (Function not implemented)
74	modify_ldt(1, {entry_number:0, base_addr:0x4cee7060, limit:1048575,
75	seg_32bit:1, contents:0, read_exec_only:0, limit_in_pages:1,
76	seg_not_present:0, useable:1}, 16) = 0
77	getpid() = 1177
78	rt_sigaction(SIGRTMIN, {0x4cee12d0, [], SA_RESTORER, 0x4cdcd368},
79	NULL, 8) = 0
80	rt_sigaction(SIGRT_1, {0x4cee1420, [], SA_RESTORER, 0x4cdcd368}, NULL,
81	8) = 0
82	rt_sigaction(SIGRT_2, {0x4cee1600, [], SA_RESTORER, 0x4cdcd368}, NULL,
83	8) = 0
84	rt_sigprocmask(SIG_BLOCK, [RTMIN], NULL, 8) = 0
85	rt_sigprocmask(SIG_UNBLOCK, [RT_1], NULL, 8) = 0
86	_sysctl({{CTL_KERN, KERN_VERSION}, 2, 0xb9cf22d4, 34, (nil), 0}) = 0
87	open("/proc/self/attr/current", O_RDONLY) = 3
88	brk(0) = 0x8061a90
89	brk(0x8082a90) = 0x8082a90
90	brk(0) = 0x8082a90
91	brk(0x8083000) = 0x8083000
92	read(3, "user_u:user_r:user_t\0", 4095) = 21
93	close(3) = 0
94	ioctl(1, TCGETS, {B38400 opost isig icanon echo ...}) = 0
95	ioctl(1, TIOCGWINSZ, {ws_row=56, ws_col=156, ws_xpixel=0,
96	ws_ypixel=0}) = 0
97	stat64("suidfiles.txt", {st_mode=S_IFREG\|0644, st_size=0, ...}) = 0
98	getxattr("suidfiles.txt", "security.selinux", 0x8065b68, 255) = 32
99	lstat64("suidfiles.txt", {st_mode=S_IFREG\|0644, st_size=0, ...}) = 0
100	lgetxattr("suidfiles.txt", "security.selinux", 0x8065c70, 255) = 32
101	stat64("temp", {st_mode=S_IFDIR\|0755, st_size=4096, ...}) = 0
102	getxattr("temp", "security.selinux", 0x8065d90, 255) = 32
103	stat64("writable.txt", {st_mode=S_IFREG\|0644, st_size=2184190, ...}) =
104	0
105	getxattr("writable.txt", "security.selinux", 0x8065ea8, 255) = 32
106	lstat64("writable.txt", {st_mode=S_IFREG\|0644, st_size=2184190, ...})
107	= 0
108	lgetxattr("writable.txt", "security.selinux", 0x8065fb0, 255) = 32
109	stat64("writable2.txt", {st_mode=S_IFREG\|0644, st_size=25890, ...}) =
110	0
111	getxattr("writable2.txt", "security.selinux", 0x80660d0, 255) = 32
112	lstat64("writable2.txt", {st_mode=S_IFREG\|0644, st_size=25890, ...}) =
113	0
114	lgetxattr("writable2.txt", "security.selinux", 0x80661d8, 255) = 32
115	fstat64(1, {st_mode=S_IFCHR\|0620, st_rdev=makedev(136, 0), ...}) = 0
116	mmap2(NULL, 4096, PROT_READ\|PROT_WRITE, MAP_PRIVATE\|MAP_ANONYMOUS, -1,
117	0) = 0x4cd85000
118	write(1, "suidfiles.txt writable.txt wri"..., 43suidfiles.txt
119	writable.txt writable2.txt
120	) = 43
121	write(1, "\n", 1
122	) = 1
123	open("temp", O_RDONLY\|O_NONBLOCK\|O_LARGEFILE\|O_DIRECTORY) = 3
124	fstat64(3, {st_mode=S_IFDIR\|0755, st_size=4096, ...}) = 0
125	fcntl64(3, F_SETFD, FD_CLOEXEC) = 0
126	fstat64(3, {st_mode=S_IFDIR\|0755, st_size=4096, ...}) = 0
127	getdents64(3, /* 5 entries */, 4096) = 152
128	getdents64(3, /* 0 entries */, 4096) = 0
129	close(3) = 0
130	write(1, "temp:\n", 6temp:
131	) = 6
132	write(1, "cvs mcs-0.28.tar.gz mono-0.28."..., 39cvs mcs-0.28.tar.gz
133	mono-0.28.tar.gz
134	) = 39
135	open("temp/cvs", O_RDONLY\|O_NONBLOCK\|O_LARGEFILE\|O_DIRECTORY) = 3
136	fstat64(3, {st_mode=S_IFDIR\|0755, st_size=4096, ...}) = 0
137	fcntl64(3, F_SETFD, FD_CLOEXEC) = 0
138	fstat64(3, {st_mode=S_IFDIR\|0755, st_size=4096, ...}) = 0
139	getdents64(3, /* 3 entries */, 4096) = 80
140	getdents64(3, /* 0 entries */, 4096) = 0
141	close(3) = 0
142	--- SIGSEGV (Segmentation fault) @ 0 (0) ---
143	+++ killed by SIGSEGV +++
144
145
146	Come on gurus, kick this rookie out of this problem, please.
147
148	Thanks...
149
150
151	--
152	gentoo-hardened@g.o mailing list

Gentoo Archives: gentoo-hardened