I've been using nvidia GLX and kernel with 2.4 and 2.6 for a while.  Just wiped
my / out and reinstalled using hardened-gcc.  I've had X work under the same
setup MINUS hardened GCC, so keep this in mind.

Anyway, even when I recompile X after an hcc -r (disable hardened GCC), it can't
load up the nvidia modules.  It may be that I have hardened a lib X uses, and X
is having a hard time coping.  I can't trace this down though.

The problem is very similar in effect to Bug 24095; however, I am NOT compiling
with Debug, and thus I would assume that X is not static built.  also, I brought
in my own precompiled, working binary package of X from my previous install (Yes
I kept it around) and that has the same problem.

I have marked this as a Major bug, but it could possibly be Critical or Blocker,
as it is stopping at least one user (me) from using 3D acceleration on a secured
system, which means that it is making at least one user experience a software
crash (X) or an inability to develope openGL software (indirect rendering is WAY
too slow).  It depends on how important you think the move to partially native
secured systems are (i.e. PaX and grsec /proc restrictions) AND the amount of
importance you place on users who are trying to create a highly secure system.

By the same argument, it could be Minor, as there's an easy workaround (don't
use Hardened-GCC and sacrifice randomized executable base); however the
workaround sacrifices a large chunk of security in my case so it *may* not be a
viable option as an "easy" workaround.  It also requires, in my case, a full
recompile of my base system in its entirity, unless I can track down
specifically what's breaking.

Reproducible: Didn't try
Steps to Reproduce:
1.  New Gentoo
2.  Get up to and including "emerge system" done
3.  Get the gcc and binutils I am using (below)
4.  Emerge hardened-gcc
5.  Emerge -eUD world to recompile the entire base system
6.  Get X and nvidia-glx installed, turning off hcc with hcc -r for packages it
breaks when necessary.
7.  Alter the X config

Actual Results:  
X won't run

Expected Results:  
X should run with hardware acceleration (direct 3D rendering via nvidia GLX)

X:             4.3.0-r3
gcc:           3.3.2-r2
bison:         1.875
binutils:      2.14.90.0.6-r6
hardened-gcc:  2.4.5

Kernels reproduced on:
  2.4.20-gentoo-r8
  2.6.0-test9 vanilla
  2.6.0-test10-vanilla
  2.6.0-test10-pax (ASLR prepatch)
  2.6.0-test10-wli-pax (WLI mm and pax aslr patches)
  2.6.0-test11-wli-pax

Portage 2.0.49-r15 (default-x86-1.4, gcc-3.3.2, glibc-2.3.2-r3,
2.6.0-test11-wli-pax)
=================================================================
System uname: 2.6.0-test11-wli-pax i686 AMD Athlon(tm) Processor
Gentoo Base System version 1.4.3.10
ACCEPT_KEYWORDS="x86"
AUTOCLEAN="yes"
CFLAGS="-mcpu=athlon-xp -Os -pipe -fomit-frame-pointer"
CHOST="i686-pc-linux-gnu"
COMPILER="gcc3"
CONFIG_PROTECT="/etc /var/qmail/control /usr/kde/2/share/config
/usr/kde/3/share/config /usr/X11R6/lib/X11/xkb /usr/kde/3.1/share/config
/usr/share/config"
CONFIG_PROTECT_MASK="/etc/gconf /etc/env.d"
CXXFLAGS="-mcpu=athlon-xp -Os -pipe -fomit-frame-pointer"
DISTDIR="/usr/portage/distfiles"
FEATURES="sandbox ccache autoaddcvs"
GENTOO_MIRRORS="http://mirror.clarkson.edu/pub/distributions/gentoo/
ftp://ftp.gtlib.cc.gatech.edu/pub/gentoo http://gentoo.noved.org/"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY=""
SYNC="rsync://rsync.gentoo.org/gentoo-portage"
USE="x86 oss apm avi crypt cups encode foomaticdb gif jpeg libg++ libwww mad
mikmod mpeg ncurses nls pdflib png quicktime spell truetype xml2 xmms xv zlib
alsa gdbm berkdb slang readline arts aalib svga java X sdl gpm tcpd pam ssl perl
python esd imlib oggvorbis gnome gtk qt motif opengl mozilla ldap cdr X gtk gtk2
qt gnome -kde java alsa oss esd arts yiff tiff mpeg jpeg png mng aalib 3ds wmf
dvd 3dnow mmx sse openal opengl cdr offensive justify"