396371 – sys-boot/grub-1.99-r2 should have more lax pax markings

Bug 396371 - sys-boot/grub-1.99-r2 should have more lax pax markings

Summary: sys-boot/grub-1.99-r2 should have more lax pax markings

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Core system (show other bugs)
Hardware:	AMD64 Linux

Importance:	Normal critical (vote)
Assignee:	Gentoo's Team for Core System packages

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2011-12-29 00:59 UTC by Francisco Blas Izquierdo Riera
Modified:	2012-01-30 09:14 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Patch to set propper pax marks (grub.patch,394 bytes, patch) 2011-12-29 01:00 UTC, Francisco Blas Izquierdo Riera (RETIRED)	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Francisco Blas Izquierdo Riera (RETIRED) gentoo-dev

2011-12-29 00:59:24 UTC

When run on a hardened system all the grub utilities get killed by the kernel due to unproper pax-marking. After some testing seems that -pems is the bare minimum for the binaries to work.

This has been proven on one of the binaries and extrapolated to the rest where the new paxmarking seemed to work whilst the older one didn't.

Attached is a patch to fix the issue.

Reproducible: Always

Steps to Reproduce:
1. emerge grub
2. run any program
Actual Results:  
The program gets killed

Expected Results:  
Program runs flawlessly

Comment 1 Francisco Blas Izquierdo Riera (RETIRED) gentoo-dev

2011-12-29 01:00:20 UTC

Created attachment 297263 [details, diff]
Patch to set propper pax marks

Comment 2 Tomáš Chvátal (RETIRED) gentoo-dev

2012-01-30 09:14:25 UTC

Added to main tree to live ebuild and 1.99-r2.