I turned off /dev/kmem access and X would no longer work on my centrino-based laptop. Actually what I should say is I turned off /dev/kmem access and then installed X and was surprised to see it not working, until I got around to checking dmesg. Anyway on my system the following:
!(offset == 0xc0000 && ((vma->vm_end - vma->vm_start) <= 0xf0000) in grsec_mem.c fixed the first /dev/[k]mem access...
but then it bombed trying to map 0xb7f4b000...0xb7f4c000
at this point I gave up adding more offsets, I'm out of my element here already. Disable privileged I/O is *NOT* enabled, btw. This is 2.6.11 gentoo hardened.
Anyway I'll just turn that feature off but I thought I'd pass the word on to more knowledgable people, in the event that there is a fix or whatever.
--
Xorg 6.8.99.5 + i915 drivers + kmem
5 posts
• Page 1 of 1
Xorg 6.8.99.5 + i915 drivers + kmem
by mirrorsh » Tue May 10, 2005 9:44 pm
- mirrorsh
- Posts: 2
- Joined: Tue May 10, 2005 9:17 pm
by spender » Sat May 14, 2005 4:27 pm
I just added ATI radeon support to the /dev/(k)mem feature, and it may fix your problems as well. Apply this diff to your grsecurity/grsec_mem.c file:
http://cvsweb.grsecurity.net/index.cgi/ ... r1=1.1&f=u
Also, for debugging purposes (in case this doesn't fix your problem), can you also add the following, just below the "end = start + vma->vm_end - vma->vm_start" line:
if (start < __pa(high_memory)) printk(KERN_ALERT "start=%08lx end=%08lx\n", start, end);
Thanks
-Brad
http://cvsweb.grsecurity.net/index.cgi/ ... r1=1.1&f=u
Also, for debugging purposes (in case this doesn't fix your problem), can you also add the following, just below the "end = start + vma->vm_end - vma->vm_start" line:
if (start < __pa(high_memory)) printk(KERN_ALERT "start=%08lx end=%08lx\n", start, end);
Thanks
-Brad
- spender
- Posts: 2185
- Joined: Wed Feb 20, 2002 8:00 pm
5 posts
• Page 1 of 1