Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 334819 - app-misc/pax-utils: scanelf: rpath_security_checks - state that the rpath has been fixed
Summary: app-misc/pax-utils: scanelf: rpath_security_checks - state that the rpath has...
Status: RESOLVED FIXED
Alias: None
Product: Portage Development
Classification: Unclassified
Component: Unclassified (show other bugs)
Hardware: All Linux
: High trivial
Assignee: SpanKY
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2010-08-27 13:22 UTC by Dennis Schridde
Modified: 2014-11-20 01:26 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Dennis Schridde 2010-08-27 13:22:19 UTC 
Since bug #124962, the insecure rpaths are being fixed automatically by portage (under certain circumstances).
However portage does not state that this happened [1], leading to possibly unnecessary Gentoo bugreports like bug #283095, while the issue should probably be dealt with by upstream.

I propose outputting a message (of same logging priority as the original "scanelf: rpath_security_checks" message) after the "scanelf ..." messages. This message could look like this:
---
scanelf: rpath_security_checks(): DT_RPATH has been stripped off the security critical relative paths. However, please still report this problem upstream.
---

[1] ---
scanelf: rpath_security_checks(): Security problem with relative DT_RPATH '.' in /var/tmp/portage/app-text/acroread-9.3.4/image/opt/Adobe/Reader9/Reader/intellinux/lib/libextendscript.so
scanelf: rpath_security_checks(): Security problem with relative DT_RPATH '.' in /var/tmp/portage/app-text/acroread-9.3.4/image/opt/Adobe/Reader9/Reader/intellinux/lib/libsccore.so
---

Reproducible: Always