GRSEC and Varnish

Bernardf FRIT bernard at frit.net
Tue Feb 2 16:44:48 CET 2010 

Hi,

I'am running :
- varnishd (varnish-2.0.4)
- linux kernel 2.6.27.10-grsec-xxxx-grs-ipv4-64

and it appears that the grsec Kernel repeatedly and unexpectedly sends 
signal 11 to the varnishd child.

.../...
Feb  2 12:01:02 XXXXXX varnishd[17111]: segfault at 1000 ip 
000000000043abf0 sp 0000000047d89ae0 error 4 in varnishd[400000+50000]
Feb  2 12:01:02 XXXXXX grsec: From 82.67.39.69: signal 11 sent to 
/usr/sbin/varnishd[varnishd:17111] uid/euid:65534/65534 
gid/egid:65534/65534, parent
 /usr/sbin/varnishd[varnishd:28927] uid/euid:0/0 gid/egid:0/0
Feb  2 13:45:44 XXXXXX varnishd[22187]: segfault at f5000 ip 
000000000043abf0 sp 0000000048538ae0 error 4 in varnishd[400000+50000]
Feb  2 13:45:44 XXXXXX grsec: From 80.13.19.228: signal 11 sent to 
/usr/sbin/varnishd[varnishd:22187] uid/euid:65534/65534 
gid/egid:65534/65534, paren
t /usr/sbin/varnishd[varnishd:28927] uid/euid:0/0 gid/egid:0/0
Feb  2 13:54:57 XXXXXX varnishd[22236]: segfault at 1000 ip 
000000000043abf0 sp 0000000045445ae0 error 4 in varnishd[400000+50000]
Feb  2 13:54:57 XXXXXX grsec: From 80.13.19.228: signal 11 sent to 
/usr/sbin/varnishd[varnishd:22236] uid/euid:65534/65534 
gid/egid:65534/65534, paren
t /usr/sbin/varnishd[varnishd:28927] uid/euid:0/0 gid/egid:0/0
Feb  2 14:13:41 XXXXXX varnishd[22595]: segfault at ae000 ip 
000000000043abf0 sp 0000000040ff4ae0 error 4 in varnishd[400000+50000]
Feb  2 14:13:41 XXXXXX grsec: From 83.145.80.130: signal 11 sent to 
/usr/sbin/varnishd[varnishd:22595] uid/euid:65534/65534 
gid/egid:65534/65534, pare
nt /usr/sbin/varnishd[varnishd:28927] uid/euid:0/0 gid/egid:0/0
Feb  2 14:31:08 XXXXXX varnishd[23547]: segfault at 1000 ip 
000000000043abf0 sp 0000000045b40ae0 error 4 in varnishd[400000+50000]
Feb  2 14:31:08 XXXXXX grsec: From 81.49.118.48: signal 11 sent to 
/usr/sbin/varnishd[varnishd:23547] uid/euid:65534/65534 
gid/egid:65534/65534, paren
t /usr/sbin/varnishd[varnishd:28927] uid/euid:0/0 gid/egid:0/0
Feb  2 16:19:05 XXXXXX varnishd[24256]: segfault at f7000 ip 
000000000043abf0 sp 00000000473bcae0 error 4 in varnishd[400000+50000]
Feb  2 16:19:05 XXXXXX grsec: From 192.196.142.20: signal 11 sent to 
/usr/sbin/varnishd[varnishd:24256] uid/euid:65534/65534 
gid/egid:65534/65534, par
ent /usr/sbin/varnishd[varnishd:28927] uid/euid:0/0 gid/egid:0/0

Then the parent varnishd process starts immediately a new child process 
which lasts some time.

Is there any way to fix this. Remocve the GRSEC kernel ? Upgrade the 
kernel ? Varnish ? or whatever ?

Thanks in advance.
--
Bernard FRIT

More information about the varnish-misc mailing list