I just installed a fresh SELinux machine and used the hardened-sources for kernel. This kernel includes patches from super-freeswan, so I tried to compile both freeswan-1.99 and super-freeswan-something_p4 (the latest). While the ebuild itself succeeds, the package is not built correctly. For some reason, failures in the build process are not propagated to top-level make, it appears. I tried to build those parts manually, but failed with several different errors, which seemed to be kernel-related. Could someone look into this, please? This problem is way over my head ... Reproducible: Always Steps to Reproduce: 1. 2. 3.
I recompiled super-freeswan with the latest ebuild version (see http://bugs.gentoo.org/show_bug.cgi?id=29783) and now it works! Just for the record, I have been successfully running it now under SELinux, using the hardened-sources 2.4.21 and the latest hardened-gcc. PaX is also activated in the kernel. Everything works fine! There is one more problem in the "utils" directory, though: | make[3]: Entering directory `/var/tmp/portage/super-freeswan-1.99.7.3/work/super-freeswan-1.99.7.3/testing/utils/uml_netjig' | gcc -g -Wall -I/usr/include/pcap -DARP_PROCESS -c -o uml_netjig.o uml_netjig.c | uml_netjig.c:73:18: pcap.h: No such file or directory | uml_netjig.c:126: error: syntax error before "pcap_dumper_t" | [...] I'll try whether emerging libpcap before super-freeswan will fix that, but it looks like there's a missing dependency.
So this is a super-freeswan issue and not a hardened-sources issue? Are you still experiencing this?
I appears to be a freeswan issue, not with the hardened-sources, yes. The remaining problem can be fixed by adding libpcap to the list of dependencies (what still needs to be done). After that, the package built fine.
freeswan problem as peter stated. changing resolution to INVALID
