Compiling error

Michael Decker Tue, 04 Jul 2006 07:20:58 -0700

Hi!

I try to run an hardened gentooo, but fails on compiling the kernel.


I follow this manual by configuration:
http://www.gentoo.org/doc/en/handbook/handbook-x86.xml?full=1
http://www.gentoo.org/proj/en/hardened/rsbac/quickstart.xml
http://gentoo-wiki.com/SECURITY_Encrypting_Root_Filesystem_with_DM-Crypt_with_LUKS

No I get this error after running "make && make modules_install":
        --- SNIP --
dnsdomainname: Unknown host
  UPD     include/linux/compile.h
  CC      init/version.o
  LD      init/built-in.o
  LD      .tmp_vmlinux1
fs/built-in.o: In function `load_elf_binary':
binfmt_elf.c:(.text+0x396bb): undefined reference to `pax_set_initial_flags'
make: *** [.tmp_vmlinux1] Error 1
(chroot) livecd linux # make menuconfig
scripts/kconfig/mconf arch/i386/Kconfig
#
# using defaults found in .config
#


*** End of Linux kernel configuration.
*** Execute 'make' to build the kernel or try 'make help'.
        --- SNAP ---

I don't understand this error...

But I've detect that RSBAC and PAX manual are different, could be here
an error? (showing only the differences here):
http://www.gentoo.org/proj/en/hardened/rsbac/quickstart.xml

        --- SNIP ---
 PaX Control --->
   [*] Support soft mode (Turn that option off on a production kernel)
   [ ] Use legacy ELF header marking
   [ ] Use ELF program header marking
     Use ELF program header marking MAC system integration (direct) --->
       (X) direct

 Non-executable pages --->
   [*] Enforce non-executable pages (NEW)
   [*] Paging based non-executable pages
      (You usually want to select the PAGEEXEC method on x86 since on
      newer PaXs, revert to SEGMEXEC if you are having issues)
   [*] Segmentation based non-executable pages (NEW)
   [*] Restrict mprotect()
   [ ] Disallow ELF text relocations
      (This option breaks too much applications as of now)
        --- SNAP ---

But PaX tells http://www.gentoo.org/proj/en/hardened/pax-quickstart.xml
        --- SNIP ---
PaX Control ->
   [ ] Support soft mode
   [*] Use legacy ELF header marking
   [*] Use ELF program header marking
       MAC system integration (none) --->

Non-executable page ->
   [*] Paging based non-executable pages
   [*] Emulate trampolines

Address Space Layout Randomization ->
   [*] Randomize kernel stack base
   [*] Randomize ET_EXEC base
        --- SNAP ---

Could somebody help me out, here?

Thanks a lot

Bye,
        Michael Decker


-- 
Michael Decker                      [EMAIL PROTECTED]
TESIS SYSware GmbH                      http://www.tesis.de
Baierbrunnerstr. 15 * 81379 Muenchen * Tel. +49 89 747377-0

-- 
[email protected] mailing list

[gentoo-hardened] RSBAC / PaX -> Compiling error

Reply via email to