| View previous topic :: View next topic |
| Author |
Message |
Marcello.Tomasini
n00b
Joined: 31 May 2009
Posts: 28
|
 Posted: Fri Jun 26, 2009 3:56 pm Post subject: Sebek install failed,version magic problem [PartiallySolved] |
 |
|
Hi, after compiling sebek (https://projects.honeynet.org/sebek/) on User Mode Linux with 2.6.20 kernl, I can't install sebek module sbk.co due to the following problem:
| Code: | NIRVANA:/tmp/sebek-lin26-3.2.0b-bin# ./sbk_install.sh
Installing Sebek:
0 1:8960:::::::::25088:33454
1 2:36864::::::::::
2 0:8960:::::::::25088:33070
sbk: version magic '2.6.20 CORE2 ' should be '2.6.20 '
insmod: error inserting 'sebek': -1 Invalid module format
sebek install failed |
This could not be true because it was built from the same machine running the same kernel with the same .config kernel file...Is there an hack or trick to solve this?
N.B. sebek configuration and compilation was succesful, so I don't know were I am wrong.
Last edited by Marcello.Tomasini on Sun Aug 16, 2009 9:21 pm; edited 1 time in total |
|
| Back to top |
|
 |
Marcello.Tomasini
n00b
Joined: 31 May 2009
Posts: 28
|
| Posted: Wed Jul 15, 2009 12:29 pm Post subject: |
|
|
Ok, i solved the first problem recompiling linux sources and modules with ARCH=um.
But now there is a new problem; when try to install sebek i get a kernel panic:
| Code: | NIRVANA:/usr/local/src/sebek-lin26-3.2.0b-bin# ./sbk_install.sh
Installing Sebek:
0 1:8960:::::::::25088:40127
1 2:36864::::::::::
2 0:8960:::::::::25088:39210
about to process filter file
Sebek Filter - filename=./filter.of
after attempt to process filter file
Kernel panic - not syncing: Kernel mode fault at addr 0xc068e400, ip 0x400e76fe
EIP: 0073:[<400e76fe>] CPU: 0 Not tainted ESP: 007b:bf9b7240 EFLAGS: 00000246
Not tainted
EAX: ffffffda EBX: 0804b088 ECX: 00007bf4 EDX: 0804b008
ESI: 4007e80e EDI: 40148ff4 EBP: bf9b7298 DS: 007b ES: 007b
0ade7828: [<08088876>] notifier_call_chain+0x36/0x50
0ade7844: [<08079966>] panic+0x76/0x110
0ade7864: [<0805b2cf>] segv+0x21f/0x2f0
0ade78a0: [<0805b040>] segv_handler+0x0/0x70
0ade7910: [<0805b040>] segv_handler+0x0/0x70
0ade7918: [<0805b0ab>] segv_handler+0x6b/0x70
0ade7934: [<08070f59>] sig_handler_common_skas+0xb9/0x140
0ade7958: [<0806c717>] sig_handler+0x37/0x70
0ade7970: [<0806f349>] hard_handler+0x19/0x20
0ade79bc: [<0b80af63>] find_system_call+0x13/0x40 [sbk]
0ade7a18: [<0806f4fa>] run_syscall_stub+0x10a/0x2b0
0ade7ed4: [<0b80afd8>] get_sct+0x8/0x20 [sbk]
0ade7edc: [<0b80bde5>] init_monitoring+0x5/0x70 [sbk]
0ade7ee0: [<0b810479>] sebek_init+0x479/0x497 [sbk]
0ade7f08: [<0809a51b>] sys_init_module+0xab/0x160
0ade7f20: [<0805c55a>] handle_syscall+0x9a/0xd0
0ade7f24: [<0804b088>] makecrc+0x98/0xa0
0ade7f2c: [<0804b008>] makecrc+0x18/0xa0
0ade7f3c: [<0809a470>] sys_init_module+0x0/0x160
0ade7f40: [<0804b088>] makecrc+0x98/0xa0
0ade7f48: [<0804b008>] makecrc+0x18/0xa0
0ade7f6c: [<0806ffe4>] handle_trap+0x34/0x150
0ade7f78: [<0806f10e>] save_registers+0x3e/0x70
0ade7f94: [<08070794>] userspace+0x1f4/0x240
0ade7fe8: [<0805c1d7>] fork_handler+0x77/0x90 |
Can anyone help me? |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Kernel & Hardware
