Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 60290 - Could not open /dev/grsec when doing gradm -E with 2.6.7-hardened-r7 kernel and gradm-2.0.1
Summary: Could not open /dev/grsec when doing gradm -E with 2.6.7-hardened-r7 kernel a...
Status: RESOLVED WORKSFORME
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Hardened (show other bugs)
Hardware: x86 Linux
: High blocker (vote)
Assignee: Hardened Gentoo
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2004-08-13 19:28 UTC by Stephen Torri
Modified: 2004-09-08 18:30 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Result of "emerge -v --deep gradm" (gradm_build.log,9.24 KB, text/plain)
2004-08-13 19:31 UTC, Stephen Torri 		Details
Kernel configuration for 2.6.7-hardened-r7 kernel (selinux_kernel.txt,30.20 KB, text/plain)
2004-08-13 19:32 UTC, Stephen Torri 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Stephen Torri 2004-08-13 19:28:58 UTC 
When I attempt to start gradm I get the following message:

selinux gradm2 # gradm -E
Could not open /dev/grsec.
open: No such device or address


Reproducible: Always
Steps to Reproduce:
1. build 2.6.7-hardened-r7 kernel
2. build gradm-2.0.1
3. run gradm -E

Actual Results:  
Same as above.

Expected Results:  
Gradmin enabled.

Portage 2.0.50-r9 (x86, gcc-3.3.3, glibc-2.3.3.20040420-r0, 2.6.7-hardened-r7)
=================================================================
System uname: 2.6.7-hardened-r7 i686 Pentium II (Deschutes)
Gentoo Base System version 1.4.16
Autoconf: sys-devel/autoconf-2.59-r4
Automake: sys-devel/automake-1.8.3
ACCEPT_KEYWORDS="x86"
AUTOCLEAN="yes"
CFLAGS="-O2 -march=pentium2 -fomit-frame-pointer -fforce-addr"
CHOST="i686-pc-linux-gnu"
COMPILER="gcc3"
CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3/share/config
/usr/share/config /var/qmail/control"
CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d"
CXXFLAGS="-O2 -march=pentium2 -fomit-frame-pointer -fforce-addr"
DISTDIR="/usr/portage/distfiles"
FEATURES="autoaddcvs buildpkg ccache fixpackages loadpolicy sandbox sfperms
strict userpriv"
GENTOO_MIRRORS="http://gentoo.oregonstate.edu
http://distro.ibiblio.org/pub/Linux/distributions/gentoo"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY=""
SYNC="rsync://rsync.namerica.gentoo.org/gentoo-portage"
USE="berkdb crypt gdbm libwww ncurses nls pam perl png python readline selinux
ssl tcpd tiff x86 zlib"
Comment 1 Brandon Hale (RETIRED) gentoo-dev 2004-08-13 19:30:53 UTC 
works here..
Comment 2 Stephen Torri 2004-08-13 19:31:09 UTC 
Created attachment 37397 [details]
Result of "emerge -v --deep gradm"
Comment 3 Stephen Torri 2004-08-13 19:32:03 UTC 
Created attachment 37398 [details]
Kernel configuration for 2.6.7-hardened-r7 kernel
Comment 4 Stephen Torri 2004-08-30 20:36:10 UTC 
Unmerged gradm and build straigh from the tarball. The problem I found during installation was that /etc/grsec/acl does not exist. If it does not then the installation cannot proceed. I did 'touch /etc/grsec/acl' and was able to get the make install to work. After this I set the admin password via gradm -P admin. Once all this was done then I could do gradm -E.

It appears that either the installation is incorrect in assuming that /etc/grsec/acl will exist or that something must be done before gradm is emerged (e.g. install something else). I say only this out of ignorance.
Comment 5 solar (RETIRED) gentoo-dev 2004-09-08 18:30:35 UTC 
works here and for everybody else but you.