[systemd-bugs] [Bug 53940] build with binary hardening measures in place ( pie and -z now )
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Thu Aug 23 04:32:31 PDT 2012
https://bugs.freedesktop.org/show_bug.cgi?id=53940
--- Comment #5 from Lennart Poettering <lennart at poettering.net> 2012-08-23 11:32:31 UTC ---
(In reply to comment #4)
> the hardenend build flags are related, yes.
>
> I am suggesting to systemd to do PIE for all its binaries by default
> without needing other hardening buildmagic.
Yes, I understand that, and I agree with it. I am just trying to wrap my head
around this: why do we need the -spec file magic that is mentioned here:
https://lists.fedoraproject.org/pipermail/devel/2011-August/155358.html
Is that mostly redundant now because libtool/automake got updated and don't
need this stuff anymore, or does the -spec stuff actually have any benefits
still?
--
Configure bugmail: https://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA Contact for the bug.
You are the assignee for the bug.
More information about the systemd-bugs
mailing list