277500 – Hardened Gentoo might not be suitable for a new chroot installation of Gentoo Linux.

Bug 277500 - Hardened Gentoo might not be suitable for a new chroot installation of Gentoo Linux.

Summary: Hardened Gentoo might not be suitable for a new chroot installation of Gentoo...

Status:	RESOLVED WONTFIX

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Unspecified (show other bugs)
Hardware:	x86 Linux

Importance:	High normal
Assignee:	The Gentoo Linux Hardened Team

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2009-07-12 12:33 UTC by Hongjiu Zhang
Modified:	2009-07-13 02:41 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Hongjiu Zhang 2009-07-12 12:33:42 UTC

I have a Hardened Gentoo running on my laptop. I am going to install a new Gentoo system on my mobile harddisk, and using a Hardened 20090630 autobuilt stage3. While I updating its glibc, I met the problem. Grsecurity blocks me from chmod in chrooting system, and unpacking glibc failed. /var/log/kernel/current and build.log will be on soon.
    Since nobody tell me this, I think there should be a workaround or a notice like "Hardened Gentoo is not suitable for a new chroot installation of Gentoo Linux" in handbook.
    Thank you for your answers.

Reproducible: Always

Steps to Reproduce:
1. Have a working Hardened Gentoo with GrSecurity enabled.
2. Download a stage3 and chrooting.
3. emerge -1u =glibc-2.9*.

Comment 1 Gordon Malm (RETIRED) gentoo-dev

2009-07-13 02:41:49 UTC

You can install Hardened Gentoo in a chroot on 'normal' Gentoo without issue.  When using chroots on a host with a grsec kernel you may need to loosen some grsec chroot restrictions.  I think this is all pretty self-explanatory already in grsec Kconfig help and grsec documentation.