1 |
Hi Dominik, |
2 |
|
3 |
hi lists, |
4 |
|
5 |
the new hardened-gcc-1.5 package contains a new softlink behaviour |
6 |
pointing to the /lib/ld compiled into the interpreter section. |
7 |
|
8 |
this is the old behaviour which will bring massive problems when glibc |
9 |
is updated: |
10 |
17:56:24 pappy@crusade pappy $ readelf -a /bin/ping | grep -i interp |
11 |
INTERP 0x00a328 0x0000a328 0x0000a328 0x00011 0x00011 R 0x1 |
12 |
[Requesting program interpreter: /lib/ld-2.3.2.so] |
13 |
|
14 |
the new update-proof behaviour: |
15 |
17:56:29 pappy@crusade pappy $ readelf -a /usr/bin/ssh | grep -i interp |
16 |
INTERP 0x0000f4 0x000000f4 0x000000f4 0x00026 0x00026 R 0x1 |
17 |
[Requesting program interpreter: /lib/ld-linux.so.2] |
18 |
|
19 |
Remember that on hppa the softlink is not the same but the ebuild will |
20 |
take care once hppa is getting another glibc bug fixed concerning %r19. |
21 |
|
22 |
Every user of hardened-gcc should emerge the new hardened-gcc and then |
23 |
emerge --emptytree --update --verbose world to make sure no single |
24 |
program is using the old interpreter link any more. |
25 |
|
26 |
this is a "forward bug" warning which will have no effect until the |
27 |
glibc and the ld stays the same - but please take care. |
28 |
|
29 |
|
30 |
Alex |
31 |
|
32 |
|
33 |
|
34 |
-- |
35 |
gentoo-hardened@g.o mailing list |