Bug #23254

Linux / PaX and "BattlEye" related issue(s)

Added by idl0r almost 4 years ago. Updated over 2 years ago.

Status:Assigned Start date:08/08/2011
Priority:Normal Due date:
Assignee:Dwarden % Done:

0%

Category:Server
Target version:BattlEye
Affected ArmA II version:1.63 Beta First affected build:
Reproduced by another DH user:No First affected ArmA II version:
I am using some Mods:Yes Single / Multi Player?:
I am using:CO (OA+A2) BIForumURL:
Reproducible for you:Yes NGUrl:
Related to content of DLC: WIKIurl:

Description

There are some issues with mprotect() if you try to run the server on a
grsecurity / PaX system.

It segfaults during startup if BattlEye (latest, 1.122) has been enabled:

[9037170.877038] grsec: From xx.xx.xx.xx: denied RWX mprotect of <anonymous mapping> by /home/arma2/arma2/server[server:24178] uid/euid:1027/1027 gid/egid:1027/1027, parent bin/zsh[zsh:24109] uid/euid:1027/1027 gid/egid:1027/1027
[9037170.877046] grsec: From xx.xx.xx.xx: denied RWX mprotect of /lib32/libpthread-2.11.3.so by /home/arma2/arma2/server[server:24178] uid/euid:1027/1027 gid/egid:1027/1027, parent /bin/zsh[zsh:24109] uid/euid:1027/1027 gid/egid:1027/1027
[9037170.877053] server[24178]: segfault at ed02d720 ip 00000000eb4d3ed3 sp 00000000ff83c1d4 error 7 in beserver.so[eb4c9000+17000]
[9037170.877063] grsec: From xx.xx.xx.xx: Segmentation fault occurred at 00000000ed02d720 in /home/arma2/arma2/server[server:24178] uid/euid:1027/1027 gid/egid:1027/1027, parent /bin/zsh[zsh:24109] uid/euid:1027/1027 gid/egid:1027/1027

You can workaround this by disabling mprotect via either paxctl -m or chpax -m but it just hides the warning/error so no real solution.
I'm not sure whether its BattlEye itself or the ArmA server but I believe its the server..

The second thing is probably related to the mprotect thingy above although it also happens without BattlEye:
During shutdown (CTRL+C):

^C 111/07/08, 18:54:26 String id 1598 is not registered
18:54:26 
Unreachable
 111/07/08, 18:54:26 Critical:Destroying running thread!
./arma2.sh: line 32: 31970 Killed                  (core dumped) ./arma2co ${OPTS} -mod=$(get_mods ${MODS})

[6282565.544226] arma2co[7971]: segfault at c ip 0000000008f7fa2d sp 00000000f08d7370 error 4 in server[8048000+1025000]
[6282565.544241] PAX: From xx.xx.xx.xx: execution attempt in: (null), 00000000-00000000 00000000
[6282565.544246] arma2co[7972]: segfault at c ip 0000000008f7fa2d sp 00000000f08c6370 error 4
[6282565.544252] PAX: terminating task: /home/arma2/arma2/server(arma2co):7968, uid/euid: 1027/1027, PC: 0000000053656c62, SP: 00000000f090a32c
[6282565.544255]  in server[8048000+1025000]
[6282565.544258] PAX: bytes at PC: 
[6282565.544261] grsec: From xx.xx.xx.xx: Segmentation fault occurred at 000000000000000c in /home/arma2/arma2/server[arma2co:7971] uid/euid:1027/1027 gid/egid:1027/1027, parent /home/arma2/arma2/arma2.sh[arma2.sh:7955] uid/euid:1027/1027 gid/egid:1027/1027
[6282565.544268] ?? ?? ?? ?? ?? ?? ?? ?? 
[6282565.544279] grsec: From xx.xx.xx.xx: Segmentation fault occurred at 000000000000000c in /home/arma2/arma2/server[arma2co:7972] uid/euid:1027/1027 gid/egid:1027/1027, parent /home/arma2/arma2/arma2.sh[arma2.sh:7955] uid/euid:1027/1027 gid/egid:1027/1027
[6282565.544282] ?? 
[6282565.544327] PAX: From xx.xx.xx.xx: execution attempt in: <anonymous mapping>, 0907f000-1cbf8000 0907f000
[6282565.544330] PAX: terminating task: /home/arma2/arma2/server(arma2co):7970, uid/euid: 1027/1027, PC: 0000000009a1f4e0, SP: 00000000f08e832c
[6282565.544333] PAX: bytes at PC: a8 f7 a1 09 a8 f2 a1 09 00 00 00 00 00 00 00 00 00 00 00 00 
[6282565.544339] PAX: bytes at SP-8: f08e834809a1f26c 09a1f26008f8003f 00001f2200000000 00000000f0ba4e8c f08e8368003d0f00 090a8d0408f802cd 0000000009a1f260 f0ba4e8c00000000 f08e838800000000 09a1f26008f7fa22 0000000000000000 
[6282565.544352] ?? 
[6282565.544429] PAX: From xx.xx.xx.xx: execution attempt in: <anonymous mapping>, 0907f000-1cbf8000 0907f000
[6282565.544437] PAX: terminating task: /home/arma2/arma2/server(arma2co):7969, uid/euid: 1027/1027, PC: 0000000009a1eea0, SP: 00000000f08f932c
[6282565.544441] ?? 
[6282565.544443] PAX: bytes at PC: a8 93 0b 09 10 e6 a1 09 00 00 00 00 00 00 00 00 00 00 00 00 
[6282565.544455] PAX: bytes at SP-8: f08f934809a1ebdc 09a1ebd008f8003f 00001f2100000000 00000000f0ba4e8c f08f9368003d0f00 090a8d0408f802cd ?? 0000000009a1ebd0 ?? f0ba4e8c00000000 ?? f08f938800000000 ?? 09a1ebd008f7fa22 ?? 0000000000000000 ?? 
[6282565.544474] ?? ?? ?? 
[6282565.544478] PAX: bytes at SP-8: f090a348090fac54 090fac4808f8003f 00001f2000000000 00000000f0ba4e8c f090a368003d0f00 090a8d0408f802cd 00000000090fac48 f0ba4e8c00000000 f090a38800000000 090fac4808f7fa22 0000000000000000

I already sent my coredumps to BIS some weeks/months ago (IDEA-GAMES-RT # 16619) I just decided to file this issue here as well so that it will not be forgotten :)

I hadn't much time yet to take a deeper look into it, its also difficult for me because of the missing debug symbols as well as the pre-stripped ELF.

History

Updated by zGuba almost 4 years ago

  • Due date set to 12/08/2011
  • Status changed from New to Assigned
  • Assignee set to Dwarden

Updated by Dwarden almost 4 years ago

  • Target version set to BattlEye

Updated by idl0r almost 4 years ago

  • Affected ArmA II version changed from 1.59.79384 to 1.59.79548 Linux Server

Updated by idl0r almost 4 years ago

Just to clarify: If the first issue comes from/through BattlEye itself then the second one is a different issue.

Btw. if you guys need access to such a box just let me know.

Updated by Fireball almost 4 years ago

  • Description updated (diff)

Updated by idl0r over 3 years ago

  • Affected ArmA II version changed from 1.59.79548 Linux Server to 1.60.87589 Linux Server

Updated by Dwarden about 3 years ago

  • Status changed from Assigned to Closed

closed, quite old problem, if is still issue reopen with some more info

Updated by idl0r almost 3 years ago

  • Affected ArmA II version changed from 1.60.87589 Linux Server to 1.62 Beta

It's still persistent. 1.62 Alpha was not in the list so I took "1.62 Beta" instead.
See also: http://pax.grsecurity.net/docs/mprotect.txt

Updated by kju almost 3 years ago

  • Due date deleted (12/08/2011)
  • Status changed from Closed to Assigned
  • Affected ArmA II version changed from 1.62 Beta to 1.63 Beta

Updated by Dwarden over 2 years ago

any issue with latest BE and OA Linux server 1.62.1000000 ?

Also available in: Atom PDF