/proc/sys/kernel/grsecurity/acl does not exist.

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

/proc/sys/kernel/grsecurity/acl does not exist.

Postby orbit » Tue Apr 01, 2003 5:26 am

any help would be greatful. new to this.. :-?


/proc/sys/kernel/grsecurity/acl does not exist. Please recompile your kernel with grsecurity's ACL system. :wink:
orbit
 
Posts: 2
Joined: Tue Apr 01, 2003 5:22 am

Postby spender » Tue Apr 01, 2003 8:15 am

You're using a kernel without grsecurity patched in. Download linux 2.4.20 from http://www.kernel.org, and the latest grsecurity patch off this site, patch the kernel, and compile.

-Brad
spender
 
Posts: 2185
Joined: Wed Feb 20, 2002 8:00 pm

Postby orbit » Wed Apr 02, 2003 5:23 am

Thanks Brad, if you happend to run back by this maybe you can help again. I d/l the kernel and the patch and I compiled everything but I got some very big probs.

1. When I go to boot in to new kernel & I get this:

VFS:Cannot open root device "LABEL=/" or 00:00
Please append a correct "ROOT=" boot option
Kernel Panic: VFS: Unable to mount root fs on 00:00


2. After I did make menuconfig & make dep & Make Install
I get this near the end of make install compiling:

---------------------------------------------------------------------------
ld -m elf_i386 -T /usr/src/linux-2.4.19/arch/i386/vmlinux.lds -e stext arch/i386/kernel/head.o arch/i386/kernel/init_task.o init/main.o init/version.o init/do_mounts.o \
--start-group \
arch/i386/kernel/kernel.o arch/i386/mm/mm.o kernel/kernel.o mm/mm.o fs/fs.o ipc/ipc.o \
drivers/char/char.o drivers/block/block.o drivers/misc/misc.o drivers/net/net.o drivers/media/media.o drivers/char/agp/agp.o drivers/char/drm/drm.o drivers/ide/idedriver.o drivers/cdrom/driver.o drivers/sound/sounddrivers.o drivers/pci/driver.o drivers/pcmcia/pcmcia.o drivers/net/pcmcia/pcmcia_net.o drivers/pnp/pnp.o drivers/video/video.o drivers/usb/usbdrv.o \
net/network.o \
/usr/src/linux-2.4.19/arch/i386/lib/lib.a /usr/src/linux-2.4.19/lib/lib.a /usr/src/linux-2.4.19/arch/i386/lib/lib.a \
--end-group \
-o vmlinux
nm vmlinux | grep -v '\(compiled\)\|\(\.o$\)\|\( [aUw] \)\|\(\.\.ng$\)\|\(LASH[RL]DI\)' | sort > System.map
make[1]: Entering directory `/usr/src/linux-2.4.19/arch/i386/boot'
gcc -E -D__KERNEL__ -I/usr/src/linux-2.4.19/include -D__BIG_KERNEL__ -traditional -DSVGA_MODE=NORMAL_VGA bootsect.S -o bbootsect.s
as -o bbootsect.o bbootsect.s
bbootsect.s: Assembler messages:
bbootsect.s:256: Warning: indirect lcall without `*'
ld -m elf_i386 -Ttext 0x0 -s --oformat binary bbootsect.o -o bbootsect
gcc -E -D__KERNEL__ -I/usr/src/linux-2.4.19/include -D__BIG_KERNEL__ -D__ASSEMBLY__ -traditional -DSVGA_MODE=NORMAL_VGA setup.S -o bsetup.s
as -o bsetup.o bsetup.s
bsetup.s: Assembler messages:
bsetup.s:1360: Warning: indirect lcall without `*'
ld -m elf_i386 -Ttext 0x0 -s --oformat binary -e begtext -o bsetup bsetup.o
make[2]: Entering directory `/usr/src/linux-2.4.19/arch/i386/boot/compressed'
tmppiggy=_tmp_$$piggy; \
rm -f $tmppiggy $tmppiggy.gz $tmppiggy.lnk; \
objcopy -O binary -R .note -R .comment -S /usr/src/linux-2.4.19/vmlinux $tmppiggy; \
gzip -f -9 < $tmppiggy > $tmppiggy.gz; \
echo "SECTIONS { .data : { input_len = .; LONG(input_data_end - input_data) input_data = .; *(.data) input_data_end = .; }}" > $tmppiggy.lnk; \
ld -m elf_i386 -r -o piggy.o -b binary $tmppiggy.gz -b elf32-i386 -T $tmppiggy.lnk; \
rm -f $tmppiggy $tmppiggy.gz $tmppiggy.lnk
ld -m elf_i386 -Ttext 0x100000 -e startup_32 -o bvmlinux head.o misc.o piggy.o
make[2]: Leaving directory `/usr/src/linux-2.4.19/arch/i386/boot/compressed'
objcopy -O binary -R .note -R .comment -S compressed/bvmlinux compressed/bvmlinux.out
tools/build -b bbootsect bsetup compressed/bvmlinux.out CURRENT > bzImage
Root device is (3, 2)
Boot sector 512 bytes.
Setup is 2522 bytes.
System is 1001 kB
warning: kernel is too big for standalone boot from floppy
sh -x ./install.sh 2.4.19 bzImage /usr/src/linux-2.4.19/System.map ""
+ '[' -x /root/bin/installkernel ']'
+ '[' -x /sbin/installkernel ']'
+ exec /sbin/installkernel 2.4.19 bzImage /usr/src/linux-2.4.19/System.map ''
make[1]: Leaving directory `/usr/src/linux-2.4.19/arch/i386/boot'

------------------------------------------------------------------------------------
Doesn't seem as if this is going my way i'm running RH linux-2.4.18-27.8.0

Thanks again for your help.. :)
orbit
 
Posts: 2
Joined: Tue Apr 01, 2003 5:22 am

Postby spender » Wed Apr 02, 2003 10:07 am

Did you update your /etc/lilo.conf correctly? Something's definitely wrong there.

-Brad
spender
 
Posts: 2185
Joined: Wed Feb 20, 2002 8:00 pm


Return to grsecurity support

cron