Hi again,
i've wanted to run TOMOYO Linux with ccs_hardened-sources latest version from
the overlay: 2.6.27-r1 with all PaX options compiled in.
(Btw. it's very confusing to use ccs_hardened-sources r1 what in reality means
Hardened-Source-2.6.27-r4. Maybe someone can change this to
ccs_hardened-sources version 2.6.27-r4. Will new updates come for 2.6.28 ?)
After that i have installed KVM-82 to start my virtual machines. But i have no
chance to, dmesg shows me:
brlan: port 1(eth0) entering learning state
brlan: topology change detected, propagating
brlan: port 1(eth0) entering forwarding state
BUG: unable to handle kernel NULL pointer dereference at 0000000000000038
IP: [<ffffffffa0014aae>] 0xffffffffa0014aae
PGD 0
Oops: 0000 [1] SMP
CPU 0
Modules linked in: kvm_intel kvm
Pid: 6204, comm: kvm Not tainted 2.6.27-ccs_hardened #5
RIP: 0010:[<ffffffffa0014aae>] [<ffffffffa0014aae>] 0xffffffffa0014aae
RSP: 0018:ffff88012a447dd8 EFLAGS: 00010286
RAX: ffff88012a6f9850 RBX: ffff880128543c40 RCX: 00000000fffbd000
RDX: fffffffffffffffb RSI: 000000000000ae47 RDI: ffff8801291ff9c0
RBP: 00000000ffffffe7 R08: ffff880129aacfd0 R09: 00000000000000fe
R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
R13: 000000000000ae47 R14: 0000000000000006 R15: 000000d4b0e7e100
FS: 000074bcd3c9f6f0(0000) GS:ffffffff808cf600(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b
CR2: 0000000000000038 CR3: 0000000128195000 CR4: 00000000000026e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Process kvm (pid: 6204, threadinfo ffff88012a446000, task ffff88012a6f9850)
Stack: ffffe200040bbd48 ffffffff80263e27 0000000000000000 0000000000000000
0000000000000000 000000d4b0c04fc0 0000000000000000 00000000000001a2
000000d4b0c04000 ffffe200040bbd48 ffff8801291ff9c0 ffff880128d16c30
Call Trace:
[<ffffffff80263e27>] ? 0xffffffff80263e27
[<ffffffff803495a1>] ? 0xffffffff803495a1
[<ffffffff8028902a>] ? 0xffffffff8028902a
[<ffffffff802892bb>] ? 0xffffffff802892bb
[<ffffffff8028931b>] ? 0xffffffff8028931b
[<ffffffff8020250b>] ? 0xffffffff8020250b
Code: 48 c7 c2 fb ff ff ff 41 55 41 54 55 53 48 81 ec d0 00 00 00 4c 8b a7 90
00 00 00 65 48 8b 04 25 00 00 00
00 48 8b 98 18 01 00 00 <49> 39 5c 24 38 0f 85 0c
07 00 00 81 fe 68 ae 10 40 0f 84 eb 01
RIP [<ffffffffa0014aae>] 0xffffffffa0014aae
RSP <ffff88012a447dd8>
CR2: 0000000000000038
---[ end trace 98b56cd7b88ac042 ]---
BUG: unable to handle kernel paging request at 0000000000002c40
IP: [<ffffffffa00134b4>] 0xffffffffa00134b4
PGD 0
Oops: 0002 [2] SMP
CPU 0
Modules linked in: kvm_intel kvm
Pid: 6204, comm: kvm Tainted: G D 2.6.27-ccs_hardened #5
RIP: 0010:[<ffffffffa00134b4>] [<ffffffffa00134b4>] 0xffffffffa00134b4
RSP: 0018:ffff88012a447b98 EFLAGS: 00010282
RAX: ffffffffa00137e5 RBX: 0000000000000000 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffff8801291ff9c0 RDI: 0000000000000000
RBP: ffff8801291ff9c0 R08: 0000000000000000 R09: ff1001ffff1001ff
R10: ffff880028020700 R11: ffffffff803529b6 R12: ffff88012b405910
R13: ffff8801289b8080 R14: ffff88012ba3d780 R15: ffff880128543c40
FS: 000074bcd3c9f6f0(0000) GS:ffffffff808cf600(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b
CR2: 0000000000002c40 CR3: 0000000000597000 CR4: 00000000000026e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Process kvm (pid: 6204, threadinfo ffff88012a446000, task ffff88012a6f9850)
Stack: ffffffff803529b6 0000000000000008 ffff8801291ff9c0 ffffffffa00137f2
0000000000000000 ffffffff8027e1f8 ffff8801291ff9c0 ffff88012ba8c340
0000000000000000 ffff880127cbf340 0000000000000001 ffffffff8027cbba
Call Trace:
[<ffffffff803529b6>] ? 0xffffffff803529b6
[<ffffffffa00137f2>] ? 0xffffffffa00137f2
[<ffffffff8027e1f8>] ? 0xffffffff8027e1f8
[<ffffffff8027cbba>] ? 0xffffffff8027cbba
[<ffffffff8022b302>] ? 0xffffffff8022b302
[<ffffffff8022bab7>] ? 0xffffffff8022bab7
[<ffffffff8020405a>] ? 0xffffffff8020405a
[<ffffffff80218743>] ? 0xffffffff80218743
[<ffffffff80580b79>] ? 0xffffffff80580b79
[<ffffffffa0014aae>] ? 0xffffffffa0014aae
[<ffffffff80263e27>] ? 0xffffffff80263e27
[<ffffffff803495a1>] ? 0xffffffff803495a1
[<ffffffff8028902a>] ? 0xffffffff8028902a
[<ffffffff802892bb>] ? 0xffffffff802892bb
[<ffffffff8028931b>] ? 0xffffffff8028931b
[<ffffffff8020250b>] ? 0xffffffff8020250b
Code: 53 48 89 fb 51 3b 2b 7d 17 48 63 c5 48 8b 7c c3 08 48 8b 47 18 48 85 c0
74 02 ff d0 ff c5 eb e5 5a 5b 5d
c3 55 53 48 89 fb 41 53 <f0> ff 8f 40 2c 00 00 0f
94 c0 84 c0 0f 84 a8 00 00 00 48 8b 6f
RIP [<ffffffffa00134b4>] 0xffffffffa00134b4
RSP <ffff88012a447b98>
CR2: 0000000000002c40
---[ end trace 98b56cd7b88ac042 ]---
Fixing recursive fault but reboot is needed!
If i'm using the hardened-sources-2.6.28 with PaX support all is working fine.
The ccs-sources-2.6.28-r1 works also fine, but i don't have there PaX and
grsecurity options. Maybe someone can add an overlay for css_hardened-2.6.28-r1
and test it with PaX and KVM.
Last question: Is it normal that i can see TOMOYO Linux only under "File
Systems" and not "Security options" ?
Thanks in advance.
_______________________________________________
tomoyo-users-en mailing list
[email protected]
http://lists.sourceforge.jp/mailman/listinfo/tomoyo-users-en
