| 1 |
Hi Andreas, |
| 2 |
|
| 3 |
Andreas Philipp wrote: |
| 4 |
> I've tried enabling all of pax/grsec while disabling selinux but without |
| 5 |
> success. As long as I've enabled |
| 6 |
> PAX -> |
| 7 |
> Miscellaneous hardening features -> |
| 8 |
> Sanitize all freed memory |
| 9 |
> I even get another error in mm/page_allac.c: |
| 10 |
> CC mm/page_alloc.o |
| 11 |
> GZIP kernel/config_data.gz |
| 12 |
> mm/page_alloc.c: In function '__free_one_page': |
| 13 |
> mm/page_alloc.c:333: error: 'index' undeclared (first use in this function) |
| 14 |
> mm/page_alloc.c:333: error: (Each undeclared identifier is reported only |
| 15 |
> once |
| 16 |
> mm/page_alloc.c:333: error: for each function it appears in.) |
| 17 |
> IKCFG kernel/config_data.h |
| 18 |
> make[1]: *** [mm/page_alloc.o] Error 1 |
| 19 |
> make: *** [mm] Error 2 CC kernel/configs.o |
| 20 |
|
| 21 |
I managed to get this error too when I enabled the PAX_MEMORY_SANITIZE |
| 22 |
option. But the fix was simple... just a missing 'int index;' at the |
| 23 |
start of the function call. I have added this into the patch (attached). |
| 24 |
|
| 25 |
As for your first compile error: I copied the config you sent me into my |
| 26 |
kernel sources directory and it compiled fine. I then reread your |
| 27 |
original email and noticed that you were using xen-3.0.2 which I missed |
| 28 |
initially. This patch is for xen-3.0.3. The ebuilds haven't quite hit |
| 29 |
the main tree yet, but they're already in an overlay: |
| 30 |
|
| 31 |
http://overlays.gentoo.org/dev/aross/browser |
| 32 |
|
| 33 |
I actually created my sources manually by performing the commands listed |
| 34 |
in the 3.0.2 xen-sources ebuild, but it shouldn't matter which way you |
| 35 |
do it. They're both going to give you the same result. |
| 36 |
|
| 37 |
Cheers, |
| 38 |
|
| 39 |
Brad |
Archives