SecComp on Raspbian #6
Comments
a46efbb links: add n2n protocol 0ec192c less words, more understanding, right? 08eeb1d gitboria is canonical repo, in bugs/policy 741a44f Merge pull request #6 from Erkan-Yilmaz/patch-2 33ac334 typo 5c6587c policy.md : typo e0edc9d policy.md : begin detailing our administrative policy for hyperboria/* 097e9af README.md : notes on getting involved 23e1819 security.md : answer Erkan's question about the security of hosting cjdns on a vps 9975217 README.md : scope of this project 106710a README.md : a more descriptive readme a75e0a1 index.md : let's keep old bug reports around so we can show our progress f89648b reporting.md : initial guidelines for reporting bugs, someone else keep working on this plz ba318ad Fix broken links on faq/general f4efa9b Explain `lo` route in anatomy.md document 5adb7e7 Fix tip about running cjdroute as non-root user ce2d0e3 license: #documentation agreed on cc-by, see old topic 3cf255b license: unless otherwise noted! 7d0e1a3 license: update to cc-by-sa 4.0, was 3.0 1e4d549 linked to the two new windows-related documents 42723a3 Added build-on-windows.md based on instructions sent to me by CultureSpy in exchange for peering 911d6fe notes/windows-firewall.md : securing your windows box, courtesy of cspy 1830276 LICENCE.txt : Creative Commons Attribution 3.0 66e107c LEGAL.md : we have a license now, yay! b6c2cea cjdns/upcoming/iface-h.md : notes on a new pattern which will appear throughout the codebase. e4e412d bugs/connectTo-overflow.md : detailed report on the connectTo-overflow bug. 22ae743 gsoc: move from en/notes/ to notes/ b0a0aa0 gsoc: add freifunk, dns, continuous simulations 69cfac1 achievements: 40 to 43 8e96ba0 faq/glossary.md : added 'wobsite' with relative link. 7ce9545 faq/glossary.md : added 'blag' 87c0ec2 en/notes/gsoc.md : adding draft, at larsg's request ca2c7bc Merge branch 'master' of gitboria.com:projectmeshnet/documentation cc55b31 achievements.md : these questions will be on the Hypeborian citizenship exam. Pay attention git-subtree-dir: doc git-subtree-split: a46efbb660bd368520311179d2774ac3c2c4c987
286e8fb doppleganger.md : what happens when two nodes have the same address? 53559ac index.md : point to distro quirks 42faaa5 wanted.md : point to new distro-quirks.md 38b1161 distro-quirks : OSX doesn't autopeer over ethernet, cjd and Arceliar commented why 170421e index: improve the table of contents 27e33eb readme: update subtree-merge instructions 29641fd cleanup: remove SmartOS and open-indiana docs 38e3bc6 Merge commit 'eecdf2493ed63690650d015ae9f331014e520493' into crashey 720fb2c Report firewall problem on loopback interface 3fb58e4 general.md typo, grammar, and language 7807350 Merge pull request #7 from willeponken/patch-1 c639125 Shorewall and VPN gateway using cjdns' iptunnel 2d56fa5 wanted.md : added OS specific quirks to wanted.md 429a2d1 README.md : fix these links too fe330ae index.md : fix these links too 3de1bff wanted.md : oops, fix that link 686a5ec reporting.md : ask about which distro is in use 137e432 README.md : link to policy.md and reporting.md 83e69fa wanted.md : push some more notes to the wanted section b9e40b3 wanted.md : link to bugs directory 7bf45fc index.md : index the bugs directory 808f12d empty commit to trigger post-receive hook 655ed26 iptunnel: fix indentation 0946a40 nyc.md : add links to nycmesh.net because they have a good site 6eee1ae faq: add chapter about EAGAIN red herring 8c3a32a faq: strip whitespace 056822e security.md : clarified misleading statements ffdf6e9 cleanup: remove order-of-linking/compilation docs 24b3674 cleanup: remove data_structures docs 0315c99 index: update it slightly d850ff2 cleanup: remove SmartOS and open-indiana docs bc5de67 readme: add sections for committers and cjdns.git/doc merges 87d160a readme: update cjdns url, link prose-for-programmers 101f82d security.md : update to address cjd's concerns 0834941 functions: update Iface.h doc 2aa1cae Revert "cjdns: remove outdated upcoming/iface-h" e5cca0d cjdns: remove outdated upcoming/iface-h 4ba0206 license: add CC-BY info to readme 33d30f6 license: remove LEGAL.md 1a6eda0 docs: remove resetAfterInactivitySeconds, pidFile, version 347eb3b Revert "doc: remove doc/ in preparation for git subtree-add" a46efbb links: add n2n protocol 0ec192c less words, more understanding, right? 08eeb1d gitboria is canonical repo, in bugs/policy 741a44f Merge pull request #6 from Erkan-Yilmaz/patch-2 33ac334 typo 5c6587c policy.md : typo e0edc9d policy.md : begin detailing our administrative policy for hyperboria/* 097e9af README.md : notes on getting involved 23e1819 security.md : answer Erkan's question about the security of hosting cjdns on a vps 9975217 README.md : scope of this project 106710a README.md : a more descriptive readme a75e0a1 index.md : let's keep old bug reports around so we can show our progress 8cdc311 docs: remove resetAfterInactivitySeconds, pidFile, version ac71b44 Revert "doc: remove doc/ in preparation for git subtree-add" f89648b reporting.md : initial guidelines for reporting bugs, someone else keep working on this plz ba318ad Fix broken links on faq/general f4efa9b Explain `lo` route in anatomy.md document 5adb7e7 Fix tip about running cjdroute as non-root user ce2d0e3 license: #documentation agreed on cc-by, see old topic 3cf255b license: unless otherwise noted! 7d0e1a3 license: update to cc-by-sa 4.0, was 3.0 1e4d549 linked to the two new windows-related documents 42723a3 Added build-on-windows.md based on instructions sent to me by CultureSpy in exchange for peering 911d6fe notes/windows-firewall.md : securing your windows box, courtesy of cspy 1830276 LICENCE.txt : Creative Commons Attribution 3.0 66e107c LEGAL.md : we have a license now, yay! b6c2cea cjdns/upcoming/iface-h.md : notes on a new pattern which will appear throughout the codebase. e4e412d bugs/connectTo-overflow.md : detailed report on the connectTo-overflow bug. 22ae743 gsoc: move from en/notes/ to notes/ b0a0aa0 gsoc: add freifunk, dns, continuous simulations 69cfac1 achievements: 40 to 43 8e96ba0 faq/glossary.md : added 'wobsite' with relative link. 7ce9545 faq/glossary.md : added 'blag' 87c0ec2 en/notes/gsoc.md : adding draft, at larsg's request ca2c7bc Merge branch 'master' of gitboria.com:projectmeshnet/documentation cc55b31 achievements.md : these questions will be on the Hypeborian citizenship exam. Pay attention git-subtree-dir: doc git-subtree-split: 286e8fb0efba710327f30d848008a5033e80f311
|
Fwiw, I disable seccomp on arm. So I'll keep an eye on this. |
|
This bug is back as of cjdns master, commit 13189fd Fails for me with very similar errors on Raspberry Pi 2, Jessie image: uname -a output: |
|
Needs confirmation from someone else though - my RPi can be messed up without me knowing it. |
ghost
reopened this
|
@Shnatsel can you have a look whether the kernel was built with OABI_COMPAT? |
|
There is Someone wants to play kernel recompilation? |
|
I am planning to recompile the kernel during the next week! Is there any reason to report this to the Raspbian community? |
|
It is feature regression from RPi1 kernel AFAIK. it is hardly used feature so: 1. they might have forgot it, 2. removed it deliberate, It is worth asking. |
|
This seems to be an issue specific to the semi-proptrietary RaspberryPi kernel which ships with raspbian rather than being a problem having anything to do with ARM in general. |
|
Here is the kernel config: https://github.com/raspberrypi/linux/blob/rpi-4.1.y/arch/arm/configs/bcm2709_defconfig There is CONFIG_SECCOMP=y but no CONFIG_SECCOMP_FILTER=y which might be a cause of a problem. Would be worth for someone having RPi2 to recompile Raspbian's kernel to include the second flag and check if it works, if it does then it should be reported to Raspbian's dev team. For now the workaround is to disable seccomp and tests using: |
|
Problem still persists with Using |
|
@pguth, consider making a PR to https://github.com/cjdelisle/cjdns/tree/master/doc/install for a raspbian guide. |
|
@ansuz Ok, did that: cjdelisle#1028 |
@lgierth commented on 13 May 2014
@cjdelisle commented on 13 May 2014
@lgierth commented on 17 May 2014
@lgierth commented on 24 Sep 2014
@lgierth commented 21 days ago
The text was updated successfully, but these errors were encountered: