| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
On 09/27/2005 01:21 PM, Rumen Yotov wrote: |
| 5 |
| On Tue, 27 Sep 2005 13:48:59 +0200 |
| 6 |
| kang <kang@g.o> wrote: |
| 7 |
| |
| 8 |
| |
| 9 |
|>Rumen Yotov wrote: |
| 10 |
|> |
| 11 |
|> |
| 12 |
|>>Hi, |
| 13 |
|>>In preparation for my new (third) partition, which will use Xen |
| 14 |
|>>virtual machine tried compiling it (just Xen-3 not Xen-sources) on a |
| 15 |
|>>RSBAC system. |
| 16 |
|>>It failed initially, but went w/o errors when i used "nopienossp" |
| 17 |
|>>GCC-3.3.6 profile (haven't tried with GCC-3.4.4-r1) but will later. |
| 18 |
|>>This is for your info only, don't think of filing a Bug. |
| 19 |
|>>Thanks. Rumen |
| 20 |
|>> |
| 21 |
|>> |
| 22 |
|> |
| 23 |
|>Do you mean that you are using a rsbac kernel to compile xen on or |
| 24 |
|>that you use a rsbac patched kernel with xen patch and that you try to |
| 25 |
|>compile it ? |
| 26 |
| |
| 27 |
| Hi, |
| 28 |
| Yes, compiled Xen on RSBAC system with a hardened compiler etc. |
| 29 |
| Think the important part here is the use of hardened compiler/linker. |
| 30 |
| Still haven't tied to compile a Xen-patched kernel on RSBAC, though my |
| 31 |
| initial intention was to use Xen on a separate partition, but if |
| 32 |
| successful could use both kernels (RSBAC & Xen) on a single partition. |
| 33 |
| Of course only Xen-0-kernel (superviser kernel), which can later start |
| 34 |
| other/userland kernels - Xen-U kernel. |
| 35 |
| Thanks.Rumen |
| 36 |
|
| 37 |
You need to run gcc-config -l and then set the gcc-config to a |
| 38 |
non-hardened toolchain - this seems the preferred way of disabling the |
| 39 |
hardened toolchain for a given package that seems to not like it. Then |
| 40 |
Xen will compile and run. The rest of your system can use the hardened |
| 41 |
toolchain. This was my experience with Xen and the same goes for the |
| 42 |
common-lisp compiler sbcl. |
| 43 |
|
| 44 |
Cheers, |
| 45 |
|
| 46 |
- ---Venkat. |
| 47 |
|
| 48 |
- -- |
| 49 |
Buy Gold: https://rayservers.com/new/gold http://1179726.e-gold.com/ |
| 50 |
|
| 51 |
Tel:+1-607-546-7300 Fax:+1-607-546-7387 Skype: rayservers |
| 52 |
|
| 53 |
PGP/GPG Key: https://rayservers.com/keys/0x12430522.asc |
| 54 |
|
| 55 |
-----BEGIN PGP SIGNATURE----- |
| 56 |
Version: GnuPG v1.4.1 (GNU/Linux) |
| 57 |
|
| 58 |
iD8DBQFDOrd1WdkW/RJDBSIRAhfQAKCZ6Rpe7JktFYTsvAgPjAHJPviJ8wCeKXld |
| 59 |
/CZfzensuvwXdxI8TgUrmx8= |
| 60 |
=jiGX |
| 61 |
-----END PGP SIGNATURE----- |
| 62 |
-- |
| 63 |
gentoo-hardened@g.o mailing list |
Archives