| 1 |
Hi Dominik, |
| 2 |
|
| 3 |
hi lists, |
| 4 |
|
| 5 |
the new hardened-gcc-1.5 package contains a new softlink behaviour |
| 6 |
pointing to the /lib/ld compiled into the interpreter section. |
| 7 |
|
| 8 |
this is the old behaviour which will bring massive problems when glibc |
| 9 |
is updated: |
| 10 |
17:56:24 pappy@crusade pappy $ readelf -a /bin/ping | grep -i interp |
| 11 |
INTERP 0x00a328 0x0000a328 0x0000a328 0x00011 0x00011 R 0x1 |
| 12 |
[Requesting program interpreter: /lib/ld-2.3.2.so] |
| 13 |
|
| 14 |
the new update-proof behaviour: |
| 15 |
17:56:29 pappy@crusade pappy $ readelf -a /usr/bin/ssh | grep -i interp |
| 16 |
INTERP 0x0000f4 0x000000f4 0x000000f4 0x00026 0x00026 R 0x1 |
| 17 |
[Requesting program interpreter: /lib/ld-linux.so.2] |
| 18 |
|
| 19 |
Remember that on hppa the softlink is not the same but the ebuild will |
| 20 |
take care once hppa is getting another glibc bug fixed concerning %r19. |
| 21 |
|
| 22 |
Every user of hardened-gcc should emerge the new hardened-gcc and then |
| 23 |
emerge --emptytree --update --verbose world to make sure no single |
| 24 |
program is using the old interpreter link any more. |
| 25 |
|
| 26 |
this is a "forward bug" warning which will have no effect until the |
| 27 |
glibc and the ld stays the same - but please take care. |
| 28 |
|
| 29 |
|
| 30 |
Alex |
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
-- |
| 35 |
gentoo-hardened@g.o mailing list |
Archives