Mailinglist Archive: opensuse-factory (368 mails)
| < Previous | Next > |
Re: [opensuse-factory] please fix non PIE setuid binaries
- From: Vincent Untz <vuntz@xxxxxxxxxxxx>
- Date: Mon, 23 Jan 2012 16:59:05 +0100
- Message-id: <20120123155905.GS21843@vuntz.net>
Le lundi 23 janvier 2012, à 16:46 +0100, Ludwig Nussel a écrit :
There is ./configure --with-pic, so similarly, I'd love a --with-pie.
Vincent
--
Les gens heureux ne sont pas pressés.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx
Vincent Untz wrote:
Le lundi 23 janvier 2012, à 11:58 -0300, Cristian Rodríguez a écrit :
On 23/01/12 11:45, Vincent Untz wrote:
Le lundi 23 janvier 2012, à 14:54 +0100, Ludwig Nussel a écrit :
The following packages in Factory have setuid binaries that are not
compiled with position independent code according to rpmlint. I'd
like to make the check (non-position-independent-executable ) fatal
on March 1st. I'll also file bugs for the individual packages.
What's the right way to fix this? I was hoping there'd be a ./configure
option for this, but I don't see one...
There is no autofoo macro for this ;-( nor even in autoconf archive
or similar repos.
So can we first get all this integrated in autotools? I'm not really
keen on adding some custom CFLAGS to the packages, unless it's a
temporary fix.
How deep you want it to be integrated? util-linux for example honors
optional extra variables for setuid binaries, e.g.
write_CFLAGS = $(SUID_CFLAGS) $(AM_CFLAGS)
write_LDFLAGS = $(SUID_LDFLAGS) $(AM_LDFLAGS)
Then you can call SUID_CFLAGS=-fPIE SUID_LDFLAGS=-pie ./configure ...
There is ./configure --with-pic, so similarly, I'd love a --with-pie.
Vincent
--
Les gens heureux ne sont pas pressés.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx
| < Previous | Next > |