The pam package has a pie use flag. It seems to have been added lately, I don't believe it serves any purpose. These days position independent executables and ASLR are pretty much the default Linux and Gentoo's gcc compiler package enforces them. I don't know if it is even possible to create a non-pie Gentoo system any more, and I wouldn't know why anyone would want that. Compiling sys-libs/pam with USE="-pie" does not lead to any change, the executables it installs are still pie: file /sbin/faillock /sbin/faillock: ELF 64-bit LSB pie executable, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, for GNU/Linux 3.2.0, stripped Unless anything I wrote here is terribly wrong, I believe this flag should be removed (as probably should be all other pie flags that are still in the tree).
(In reply to Hanno Böck from comment #0) > > Unless anything I wrote here is terribly wrong, I believe this flag should > be removed (as probably should be all other pie flags that are still in the > tree). No, you are generally right (with exception for being added lately, as it has been there for ages, just forgotten).
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=eaecab906a408abacc2e7bf07e58cd500afa7731 commit eaecab906a408abacc2e7bf07e58cd500afa7731 Author: Mikle Kolyada <zlogene@gentoo.org> AuthorDate: 2020-12-16 19:19:32 +0000 Commit: Mikle Kolyada <zlogene@gentoo.org> CommitDate: 2020-12-16 19:19:32 +0000 sys-libs/pam: enable pie unconditionally Closes: https://bugs.gentoo.org/756898 Package-Manager: Portage-3.0.9, Repoman-3.0.2 Signed-off-by: Mikle Kolyada <zlogene@gentoo.org> sys-libs/pam/pam-1.5.1.ebuild | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-)
