| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
On 02.01.2012 20:45, Matthew Thode (prometheanfire) wrote: |
| 5 |
> On Mon, 02 Jan 2012 13:39:45 -0500 "Anthony G. Basile" |
| 6 |
> <blueness@g.o> wrote: |
| 7 |
> |
| 8 |
>> On 01/02/2012 06:14 AM, pageexec@××××××××.hu wrote: |
| 9 |
>>> On 2 Jan 2012 at 10:56, Hinnerk van Bruinehsen wrote: |
| 10 |
>>> |
| 11 |
>>>> - - with PAX_RANDKSTACK enabled I'm not able to sucessfully |
| 12 |
>>>> compile glibc-2.14.1-r2 and glibc-2.14.1-r1 (gcc-4.6.2). I |
| 13 |
>>>> get an oops (because auf the kernelstack - I think). |
| 14 |
>>> |
| 15 |
>>> that's interesting, i'd need the oops message (enable kernel |
| 16 |
>>> symbols in your config) and your vmlinux (not bzImage) file. |
| 17 |
>>> you could also try to apply PaX alone just to be sure it's not |
| 18 |
>>> a grsec porting issue. |
| 19 |
>>> |
| 20 |
>> |
| 21 |
>> Hinnerk, thanks for the report and don't worry, I'm not |
| 22 |
>> stabilizing these chagnes anytime soon. |
| 23 |
>> |
| 24 |
>> The sysfs bug doesn't surprise me. Can you either open or bug or |
| 25 |
>> just report here exactly what programs break and which work. The |
| 26 |
>> problem is the way these programs were written and I'd rather |
| 27 |
>> patch them than relax the sysfs restrictions, if possible. |
| 28 |
>> Otherwise I'll relax this on the WORKSTATION profile. |
| 29 |
>> |
| 30 |
>> The randkstack <-> glibc is of concern. If you can open a bug |
| 31 |
>> for it (or at least pass on your kernel config) I'll try to |
| 32 |
>> reproduce and help to get pageexec the details he needs. |
| 33 |
>> |
| 34 |
>> |
| 35 |
> |
| 36 |
> I just GRKERNSEC_SYSFS_RESTRICT on the virtualization profile. |
| 37 |
> Alsa is working fine for me. Can't test pulse though :| |
| 38 |
> |
| 39 |
|
| 40 |
pageexec wrote a patch that fixed the randkstack issue. |
| 41 |
|
| 42 |
I'll investigate the issue concerning GRKERNSEC_SYSFS_RESTRICT and |
| 43 |
sound output when I have a little bit more spare time. |
| 44 |
-----BEGIN PGP SIGNATURE----- |
| 45 |
Version: GnuPG v2.0.18 (GNU/Linux) |
| 46 |
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ |
| 47 |
|
| 48 |
iQEcBAEBAgAGBQJPArglAAoJEJwwOFaNFkYc++oH/1HHVDl1kRLZ4sdP3tyjPVGj |
| 49 |
U2BT2f/od9G+sUXjgYpsKxrGd1VraISapD4+2KxYHNEFHg3IHWJevtgE1GJ7D4g3 |
| 50 |
WGRG8FTlRL9l+7qcGPN0+s+EMUiWpDD8Q0LrOrT3cy26iX2TJ7hH60DwOKKI/KMv |
| 51 |
ZXWt1qseygzLjgnX/FbY1iY80FEOtIjSe1Q4POQ071+aBdJQtmEfcoOrSQKkKYst |
| 52 |
UM9ucrq61I3/nTskjlqdxRsG0nT7Rpp7yZiTglZfFGleC3EB/2PhevsFgJ9PI+XN |
| 53 |
ZilIDGhya9R46Gd8S/KxyghsvTM5Br/qbzlzFYw0uHPQAEkPt90++KohKEB59b4= |
| 54 |
=jV1i |
| 55 |
-----END PGP SIGNATURE----- |
Archives