Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 501270 - sys-kernel/hardened-sources-3.13.2-r2: CONFIG_GRKERNSEC_HIDESYM causes uefi boots to fail
Summary: sys-kernel/hardened-sources-3.13.2-r2: CONFIG_GRKERNSEC_HIDESYM causes uefi b...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: [OLD] Core system (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: The Gentoo Linux Hardened Kernel Team (OBSOLETE)
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2014-02-14 06:53 UTC by Matthew Thode ( prometheanfire )
Modified: 2014-12-01 08:58 UTC (History)
6 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
hs-3.13.2-r2.config (.config,98.85 KB, text/x-mpsub)
2014-02-14 16:00 UTC, Matthew Thode ( prometheanfire ) 		Details
HardenedServer-kernel-3.13-gentoo_x86-64_smp.config (CapcorpHardenedServer-kernel-3.13-gentoo_x86-64_smp.config,120.43 KB, text/x-mpsub)
2014-03-03 00:53 UTC, Matthew Stapleton 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Matthew Thode ( prometheanfire ) archtester Gentoo Infrastructure gentoo-dev Security 2014-02-14 06:53:31 UTC 
just as stated
Comment 1 PaX Team 2014-02-14 13:49:51 UTC 
can you post your .config?
Comment 2 Matthew Thode ( prometheanfire ) archtester Gentoo Infrastructure gentoo-dev Security 2014-02-14 16:00:44 UTC 
Created attachment 370404 [details]
hs-3.13.2-r2.config
Comment 3 PaX Team 2014-02-14 17:10:38 UTC 
it works in qemu/ovmf at least... what made you think that HIDESYM is the culprit?
Comment 4 Matthew Thode ( prometheanfire ) archtester Gentoo Infrastructure gentoo-dev Security 2014-02-14 17:12:13 UTC 
removing it allowed me to boot
Comment 5 Nikoli 2014-02-20 09:51:19 UTC 
Does same device boot fine in mbr mode with hardened-sources-3.13.3 and CONFIG_GRKERNSEC_HIDESYM=y?
Comment 6 Matthew Stapleton 2014-03-03 00:53:27 UTC 
Created attachment 371600 [details]
HardenedServer-kernel-3.13-gentoo_x86-64_smp.config

3.13.3-hardened is working fine for me with UEFI, CONFIG_GRKERNSEC_HIDESYM=y, and refind 0.7.0 on an Asus P9X79 LE.  I have attached the kernel config I am using in case it helps.
Comment 7 Nikoli 2014-03-08 12:17:39 UTC 
My uefi system boots fine with CONFIG_GRKERNSEC_HIDESYM=y and kernel 3.13.5-hardened, i use grub-2.00_p5107-r2 for boothing kernel in uefi mode.
Comment 8 Matthew Thode ( prometheanfire ) archtester Gentoo Infrastructure gentoo-dev Security 2014-03-08 16:07:35 UTC 
this may be specific to efi-stub, not sure
Comment 9 Matthew Thode ( prometheanfire ) archtester Gentoo Infrastructure gentoo-dev Security 2014-04-03 07:23:50 UTC 
still happens in 3.13.8
Comment 10 Anthony Basile gentoo-dev 2014-09-14 00:31:09 UTC 
(In reply to Matthew Thode ( prometheanfire ) from comment #9)
> still happens in 3.13.8

still a problem?
Comment 11 Anthony Basile gentoo-dev 2014-11-29 13:31:54 UTC 
(In reply to Matthew Thode ( prometheanfire ) from comment #9)
> still happens in 3.13.8

@Matt, are you following this issue because I cannot.
Comment 12 Matthew Thode ( prometheanfire ) archtester Gentoo Infrastructure gentoo-dev Security 2014-11-29 19:10:08 UTC 
I can test again with the 3.17.4 stuff that just came out, this may just end up as a documentation thing we have to note.
Comment 13 Matthew Thode ( prometheanfire ) archtester Gentoo Infrastructure gentoo-dev Security 2014-12-01 08:58:15 UTC 
It seems to boot now (at least with 3.17.4-r1 from the overlay as of a day ago).  Marking as fixed