CTRL,ALT Keys Lock xorg1.5 with Gentoo-Hardened[resolved]

causality · Apprentice Joined: 03 Jun 2006 Posts: 156

** Please note that this is related to the use of x11-drivers/nvidia-drivers and probably would not have happened otherwise. I accidentally omitted this from my original post. Thanks to Hopeless (see below) for bringing this to my attention. **

I have already solved this and wanted to post my experience in the hope that others do not have to spend the time troubleshooting that I just did. That is, each failed attempt to fix this hardlocked the machine and required a reboot so that took longer than it otherwise would. This is one of those issues that no one else seems to have documented (at least, I couldn't find anything), so I thought I would do that here.

I updated my system with the usual "emerge --update --deep world". This pulled in the recently-stable xorg-1.5.3. I then followed the instructions found here: http://www.gentoo.org/proj/en/desktop/x/x11/xorg-server-1.5-upgrade-guide.xml. So far so good.

The first thing I found is that running "startx" hard-locked the system. By that I mean it was completely unresponsive, neither CTRL-ALT-BACKSPACE nor CTRL-ALT-DEL were effective and I could not switch to a console terminal so I had to press the computer's reset switch. Thankfully it logged this event, which I found in /var/log/grsec.log. It seems that /usr/bin/Xorg was getting killed off. This was easily remedied by lifting the mprotect() restriction on the Xorg binary:

Sadako · Posted: Tue Apr 07, 2009 8:53 pm Post subject:

I don't think you've actually solved this issue, just worked around it.

I've been running xorg under hardened gentoo for years, compiled with ssp, and I've never needed to disable mprotect on xorg, or anything else related.

Are you by any chance using binary ati or nvidia drivers or something?
_________________
"You have to invite me in"

causality · Apprentice Joined: 03 Jun 2006 Posts: 156

Sorry I should have specified. Yes I am using the binary NVIDIA drivers, as in x11-drivers/nvidia-drivers. I know that this issue probably would not have happened had I been using the "nv" or "vesa" drivers. I've edited my original post to include this information.

My feeling about that is that I'd greatly prefer to use the open-source "nv" driver, and I will do so the moment it supports full 3D acceleration. Until then, it doesn't make much sense to me to pay for a decent video card and then be unable to use its full capabilities. That nvidia-driver is in fact the only binary/proprietary software on this machine.

kallamej · Posted: Thu Apr 09, 2009 3:45 pm Post subject:

ial · Posted: Thu Apr 09, 2009 7:22 pm Post subject:

I must report EXACTLY the same issue however I do not use neither NVidia card nor any binary dirver! I use the 'intel' driver and also trouble shot "SSP attact" in my debug log on Alt/Ctrl/Shft keys hit... Interesting is this does not happen when 'Xorg' is run instead of 'startx'. Please, HELP since just recompiling xorg-server without SSP has not helped in my hardened system case! Where to look for the very cause of the problem? When 'Xorg' is run and afterwards terminated with Alt+Ctrl+Backspace the following strange message comes out on the console: error setting MTRR (base = 0xd0000000, size = 0x03000000, type = 1) Invalid argument (22)