I configured a monolithic kernel including grsecurity. When I try to boot this, I get "Unable to handle kernel paging request" and "Bad EIP value" Reproducible: Always Steps to Reproduce: 1. emerge hardened-dev-sources 2. make defconfig 3. make menuconfig 4. make 5. make install Actual Results: kernel panic in bootup after "NET: registered protocol family 16" Expected Results: booting system I will create attachments for additional information...
Created attachment 51938 [details] panic screen, passed through ksymoops
Created attachment 51939 [details] Kernel config
This seems to be a conflict with CONFIG_AFS_FS and CONFIG_PAX_KERNEXEC. Either one alone does not result in this panic.
Seems I've been too fast... Problem here again, I'm checking this.
OK, I think the one time this seemed to worked for me with CONFIG_PAX_KERNEXEC enabled I must have forgotten to install the new kernel or something. I could not get it working with CONFIG_PAX_KERNEXEC enabled. Enabling CONFIG_PAX_PAGEEXEC as well as CONFIG_PAX_SEGMEXEC did not help.
This looks like a dupe of bug 77776.
Yes, this did solve my problem. Maybe something in grsecurity should be changed to detect this problem during configuration or at compile time. As far as I can tell, CONFIG_X86_VISWS already enforces PCI_DIRECT on 2.6.10, maybe this method could be used for CONFIG_PAX_KERNEXEC as well. *** This bug has been marked as a duplicate of 77776 ***