Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 38917 Details for
Bug 62674
Verify linker flags of suids ( Strict Security QA )
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
ebuild.sh.diff
ebuild.sh.diff (text/plain), 1.16 KB, created by
solar (RETIRED)
on 2004-09-04 10:11:46 UTC
(
hide
)
Description:
ebuild.sh.diff
Filename:
MIME Type:
Creator:
solar (RETIRED)
Created:
2004-09-04 10:11:46 UTC
Size:
1.16 KB
patch
obsolete
>Index: ebuild.sh >=================================================================== >RCS file: /var/cvsroot/gentoo-src/portage/bin/ebuild.sh,v >retrieving revision 1.193 >diff -u -b -B -w -p -r1.193 ebuild.sh >--- ebuild.sh 26 Aug 2004 09:16:14 -0000 1.193 >+++ ebuild.sh 4 Sep 2004 17:03:54 -0000 >@@ -961,6 +964,25 @@ dyn_install() { > echo "UNSAFE SetUID: $i" > done > >+ if [ -x /usr/bin/readelf -a -x /usr/bin/file ]; then >+ for x in $(find "${D}/" -type f \( -perm -04000 -o -perm -02000 \) ); do >+ f=$(file "${x}") >+ if [ -z "${f/*SB executable*/}" -o -z "${f/*SB shared object*/}" ]; then >+ /usr/bin/readelf -d "${x}" | egrep "(FLAGS)(.*)BIND_NOW" > /dev/null >+ if [ $? != 0 ]; then >+ if [ ! -z "${f/*statically linked*/}" ]; then >+ #uncomment this line out after developers have had ample time to fix pkgs. >+ #UNSAFE=$(($UNSAFE + 1)) >+ echo -ne '\a' >+ echo "QA Notice: Security risk ${x:${#D}:${#x}}. Please consider relinking with 'append-ldflags -Wl,-z,now' to fix." >+ echo -ne '\a' >+ sleep 1 >+ fi >+ fi >+ fi >+ done >+ fi >+ > if [[ $UNSAFE > 0 ]]; then > die "There are ${UNSAFE} unsafe files. Portage will not install them." > fi
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 62674
:
38789
|
38917
|
39116
|
39232
|
40828