Hello, > > I've been experiencing really strange behaviours with the 2 latest > > hardened kernels (2.6.14-r6 and r7) on 2 different machines that are > > both used as OpenVPN concentrators. > > 2.6.14-r5 is working fine on these machines. > > looking at the diff between r5 and r6 i only see grsec related > changes, so that could be the culprit. would it be possible to > try the latest grsec patch alone (it's in grsecurity.net/~spender )?
I compile gentoo-sources-2.6.14-r7 and added grsecurity-2.1.9-2.6.14.7-200602141849.patch I couldn't make that kernel crash... I'll try this afternoon to add various other patches from the hardened-patches-2.6.14-7.extras.tar.bz2 series to see which one is responsible. I also tried to compile hardened-2.6.16-r4 but the make process failed with LD arch/i386/lib/built-in.o CC arch/i386/lib/bitops.o AS arch/i386/lib/checksum.o CC arch/i386/lib/delay.o AS arch/i386/lib/getuser.o CC arch/i386/lib/memcpy.o AS arch/i386/lib/putuser.o CC arch/i386/lib/strstr.o CC arch/i386/lib/usercopy.o AR arch/i386/lib/lib.a GEN .version CHK include/linux/compile.h UPD include/linux/compile.h CC init/version.o LD init/built-in.o LD .tmp_vmlinux1 arch/i386/kernel/vmlinux.lds:1681 cannot move location counter backwards (from 0 00000000102e388 to 000000000102e387) make: *** [.tmp_vmlinux1] Error 1 > > The phenomenon is the following. When I connect to the openvpn > > server from remote with openvpn, a connection is established (from > > the view of the client) but in the same moment the server crashes. > > > > This is what I managed to capture with netconsole: > > is this the full oops report? also posting your kernel .config > and corresponding System.map would be useful (probably not to > the list as they are quite big). Yes, this is everything I get. You can find the .config file at http://schwicky.net/linux/download/config and the system.map at http://schwicky.net/linux/download/System.map-2.6.14-hardened-r7 Regards. Jean-Pierre -- Powered by Linux From Scratch - http://schwicky.net/ PGP Key ID: 0xEE6F49B4 - AIM/Jabber: Schwicky - ICQ: 4690141 Nothing is impossible... Everything is relative! -- [email protected] mailing list
