| 1 |
On Mon, 2005-05-23 at 21:32 +0000, Roel Vromen wrote: |
| 2 |
> Hi list, |
| 3 |
> |
| 4 |
> I have a weird problem: when I compile a 2.6.11-kernel (the version is |
| 5 |
> probably not the culprit though) and try to boot it (in enforcing mode) it |
| 6 |
> always gives the following error: |
| 7 |
> ---- |
| 8 |
> audit(1116881914.014:0): avc: denied { execmod } for pid=1 comm=init |
| 9 |
> path=/sbin/init dev=hda3 ino=418514 scontext=system_u:system_r:init_t |
| 10 |
> tcontext=system_u:object_r:init_exec_t tclass=file |
| 11 |
> /sbin/initKernel panic - not syncing: Attempted to kill init! |
| 12 |
> : error while lo ading shared libraries: cannot restore segment prot after |
| 13 |
> reloc |
| 14 |
> : Permission denied |
| 15 |
> ----- |
| 16 |
|
| 17 |
Does your init have any text relocations in it? |
| 18 |
|
| 19 |
In the past TEXTREL's were only a problem for hardened toolchain users. |
| 20 |
But that has changed. Now selinux will be just as non permitting with |
| 21 |
them as the toolchain. |
| 22 |
-- |
| 23 |
Ned Ludd <solar@g.o> |
| 24 |
|
| 25 |
-- |
| 26 |
gentoo-hardened@g.o mailing list |
Archives