[systemd-devel] [PATCH] build: Honour SUID_CFLAGS and SUID_LDFLAGS
Mike Gilbert
floppym at gentoo.org
Sat May 17 13:42:09 PDT 2014
On Sat, May 17, 2014 at 4:02 PM, Cristian Rodríguez
<crrodriguez at opensuse.org> wrote:
> El 17/05/14 14:56, Dave Reisner escribió:
>> On Sat, May 17, 2014 at 12:39:47PM -0400, Cristian Rodríguez
>> wrote:
>>> This is the standard* way used to pass special linker/compiler
>>> flags such as -fPIE and -pie
>>>
>>> * "Standard" in the sense it is understood by many other packages
>>> and commonly used by distributions.
>>
>> This doesn't really make sense to me. I infer from the names of
>> the variables that these are flags passed to the compiler for
>> binaries which will eventually be setuid root.
>
> That was the initial purpose of this variable, yes. Currently is just
> to provide a separate variable for hardened builds.
>
> Note that I did not came up with this idea, It is just the way things
> are done elsewhere, where elsewhere is util-linux, policykit, various
> gnome components,enlightment,samba etc..
>
Looking through the source of a few of these packages:
util-linux-2.24.1: SUID_CFLAGS is utilized in Makefile.am for specific binaries.
polkit-0.112: SUID_CFLAGS is utilized in Makefile.am for specific binaries.
samba-3.6.19: SUID_CFLAGS does not appear in the source tarball.
More information about the systemd-devel
mailing list