When test-booting my freshly built hardened/PaX/grsecurity/SELinux system, it fails immediately after the kernel frees unused memory, citing: grsec: signall 11 sent to /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0, parent /[swapper:0] uid/euid:0/0 gid/egid:0/0 grsec: more alerts, logging disabled for 10 seconds Reproducible: Always Steps to Reproduce: 1. Follow the gentoo-hardened documentation for configuring PaX, grsec and SELinux 2. Boot 3. Fail Actual Results: grsec kills init with a sig11 Expected Results: Boot should complete successfully. Attaching emerge --info and kernel .config separately.
Created attachment 130052 [details] hardened-sources-2.6.20-r6 .config
Created attachment 130053 [details] emerge --info
Created attachment 130055 [details] Screenshot of failure in VMWare
Setting CONFIG_GRKERNSEC_SYSCTL_ON=Y , I no longer see this error. Instead, boot hangs completely after the 'freeing unused memory' line.
(In reply to comment #4) > Setting CONFIG_GRKERNSEC_SYSCTL_ON=Y , I no longer see this error. Instead, > boot hangs completely after the 'freeing unused memory' line. > Oops. make that CONFIG_GRKERNSEC_SYSCTL_ON=N.
Same results when enabling CONFIG_SECURITY_SELINUX_BOOTPARAM and booting with selinux=0. So I don't think this is a conflict with SELinux, but a grsec problem.
Disable CONFIG_GRKERNSEC_SYSCTL_ON=y and CONFIG_PAX_EMUTRAMP=y on x86*