Hi, i had the same problems on the debian 2.4.26-1um2 uml kernel with a host machine WITHOUT grsec kernel... The 2.4.26-1um1 worked without any problem.
I think there was a bug report on the debian BTS but if I remeber correctly the Maintainer can't reproduce this. I think the debian uml package is quite outdated. I compiled and debianized a 2.6.6 uml for my own needs and for the small isp for which I work for. I plan to compile a 2.6.8 package as soon as the 2.6.8 uml patch becomes available. If you are interessted in my user-mode-linux package, then add these line to your sources.list deb http://packages.debianbase.de/<sid/sarge>/i386/uml-exp ./ deb-src http://packages.debianbase.de/sources/uml-exp (choose sid or sage for <sid/sarge>) You should think about taking a up-to-date 2.6 kernel for your host system too, and for the performance and the security you should include the host-skas3 patch to your host kernel. sorry, I don't have any host-kernel with skas patch as package available for download, but for me the 2.6.6 patch with a clean 2.6.6 kerne-source (debian) worked perfect. --Ralph Am Montag 16 August 2004 19:34 schrieb Dmitry Golubev: > Hi! > > Maybe someone has tried UML kernel on grsec machine? I took that Debian > precompiled UML kernel, run it with "linux root=/servers/moon > " (that /servers/moon is one of my production servers' ext2 partition > image), but UML says: > > ... > mconsole (version 2) initialized on /root/.uml/N7Jm6p/mconsole > unable to open root_fs for validation > Initializing stdio console driver > NET4: Linux TCP/IP 1.0 for NET4.0 > > And that's all... no further messages, nothing. The modules required for > this kernel has been put inside the image. The host kernel is with grsec > patches,. and it tells in /var/log something about resource overstep: > > Aug 16 17:13:51 localhost kernel: grsec: attempted resource overstep by > requesting 494927872 for RLIMIT_STACK against limit 8388608 > by /usr/bin/linux[linux:29530] uid/euid:0/0 gid/egid:0/0, > parent /usr/bin/linux[linux:2566] uid/euid:0/0 gid/egid:0/0 > > > Any ideas? > Thanks, > Dmitry > > For your reference, the complete output running UML: > > virtual:~# linux root=/servers/moon > Checking for the skas3 patch in the host...not found > Checking for /proc/mm...not found > tracing thread pid = 8253 > Checking for /dev/anon on the host...Not available (open failed with errno > 2) Checking for /dev/anon on the host...Not available (open failed with > errno 2) Checking for /dev/anon on the host...Not available (open failed > with errno 2) Checking for /dev/anon on the host...Not available (open > failed with errno 2) Linux version 2.4.26-2um ([EMAIL PROTECTED]) (gcc version > 3.3.4 (Debian 1:3.3.4-3)) #2 Fri Jul 16 17:51:17 PDT 2004 > On node 0 totalpages: 8192 > zone(0): 8192 pages. > zone(1): 0 pages. > zone(2): 0 pages. > Kernel command line: root=/servers/moon > Calibrating delay loop... 989.59 BogoMIPS > Memory: 28148k available > Dentry cache hash table entries: 4096 (order: 3, 32768 bytes) > Inode cache hash table entries: 2048 (order: 2, 16384 bytes) > Mount cache hash table entries: 512 (order: 0, 4096 bytes) > Buffer cache hash table entries: 1024 (order: 0, 4096 bytes) > Page-cache hash table entries: 8192 (order: 3, 32768 bytes) > Checking for host processor cmov support...Yes > Checking for host processor xmm support...No > Checking that ptrace can change system call numbers...OK > Checking that host ptys support output SIGIO...Yes > Checking that host ptys support SIGIO on close...No, enabling workaround > POSIX conformance testing by UNIFIX > Linux NET4.0 for Linux 2.4 > Based upon Swansea University Computer Society NET3.039 > Initializing RT netlink socket > Starting kswapd > VFS: Disk quotas vdquot_6.5.1 > Journalled Block Device driver loaded > devfs: v1.12c (20020818) Richard Gooch ([EMAIL PROTECTED]) > devfs: boot_options: 0x0 > SGI XFS with ACLs, no debug enabled > SGI XFS Quota Management subsystem > Disabling 2.6 AIO in tt mode > pty: 256 Unix98 ptys configured > RAMDISK driver initialized: 16 RAM disks of 4096K size 1024 blocksize > loop: loaded (max 8 devices) > Initializing Cryptographic API > Initializing software serial port version 1 > mconsole (version 2) initialized on /root/.uml/N7Jm6p/mconsole > unable to open root_fs for validation > Initializing stdio console driver > NET4: Linux TCP/IP 1.0 for NET4.0 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]