1 |
>>> I'm using the grsecurity "Gentoo (workstation)" setting in my hardened |
2 |
>>> kernel, but trying to use wine I get this: |
3 |
>>> |
4 |
>>> err:heap:HEAP_GetPtr Invalid heap (nil)! |
5 |
>>> err:heap:HEAP_GetPtr Invalid heap (nil)! |
6 |
>>> err:module:attach_process_dlls "KERNEL32.dll" failed to initialize, aborting |
7 |
>>> err:module:LdrInitializeThunk Main exe initialization for |
8 |
>>> L"C:\\windows\\system32\\wineboot.exe" failed, status c0000005 |
9 |
>>> |
10 |
>>> If I remove grsecurity from the kernel, wine works fine. Does anyone |
11 |
>>> know how to fix this or which grsecurity option I can disable to |
12 |
>>> enable wine? |
13 |
>> |
14 |
>> |
15 |
>> You don't want to go into the kernel and start disabling features as |
16 |
>> that would be the wrong fix. No reason to downgrade system wide security |
17 |
>> for one app. You want to use paxctl -flags /path/to/wine-loader |
18 |
>> |
19 |
>> Personally I'm lazy and would just do. |
20 |
>> paxctl -permsx $(qlist -oe wine) |
21 |
>> |
22 |
>> |
23 |
>> |
24 |
> |
25 |
> This one should do the trick: |
26 |
> |
27 |
> paxctl -m /usr/bin/wine-preloader |
28 |
|
29 |
Thanks everyone, that worked great. Is there a way to get a list of |
30 |
files which have been operated on by paxctl? I didn't see anything in |
31 |
man paxctl. |
32 |
|
33 |
- Grant |