search

sarnold / ada-overlay

Gentoo Ada overlay
0 stars 0 forks source link

Fix hardened QA warnings #1

Closed sarnold closed 7 years ago

sarnold commented 7 years ago

So far with 6.3.0 we have these:

   /usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/32/libitm.a
   /usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/libitm.so.1.0.0
   /usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/32/libatomic.so.1.2.0
   /usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/libitm.a
   /usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/libatomic.so.1.2.0
   /usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/32/libatomic.a
   /usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/libatomic.a
strip: x86_64-pc-linux-gnu-strip --strip-unneeded -R .comment -R .GCC.command.line -R .note.gnu.gold-version
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/liblto_plugin.so.0.0.0
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/cc1
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/gnat1
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/cc1plus
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/f951
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/lto1
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/collect2
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/lto-wrapper
   /usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/plugin/gengtype
 * PT_PAX marking -r /var/tmp/portage/sys-devel/gcc-6.3.0/image//usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/cc1 with paxctl
 * PT_PAX marking -r /var/tmp/portage/sys-devel/gcc-6.3.0/image//usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/cc1 with paxctl-ng
 * XATTR_PAX marking -r /var/tmp/portage/sys-devel/gcc-6.3.0/image//usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/cc1 with paxctl-ng
 * PT_PAX marking -r /var/tmp/portage/sys-devel/gcc-6.3.0/image//usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/cc1plus with paxctl
 * PT_PAX marking -r /var/tmp/portage/sys-devel/gcc-6.3.0/image//usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/cc1plus with paxctl-ng
 * XATTR_PAX marking -r /var/tmp/portage/sys-devel/gcc-6.3.0/image//usr/libexec/gcc/x86_64-pc-linux-gnu/6.3.0/cc1plus with paxctl-ng
>>> Completed installing gcc-6.3.0 into /var/tmp/portage/sys-devel/gcc-6.3.0/image/

 * Final size of build directory: 2187500 KiB
 * Final size of installed tree: 294732 KiB

Auto fixing rpaths for /var/tmp/portage/sys-devel/gcc-6.3.0/image/usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/32/libstdc++.so.6.0.22
Auto fixing rpaths for /var/tmp/portage/sys-devel/gcc-6.3.0/image/usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/libstdc++.so.6.0.22

 * QA Notice: The following files contain insecure RUNPATHs
 *  Please file a bug about this at https://bugs.gentoo.org/
 *  with the maintainer of the package.
 *   /var/tmp/portage/sys-devel/gcc-6.3.0/image/usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/32/libstdc++.so.6.0.22
 *     RPATH: /var/tmp/portage/sys-devel/gcc-6.3.0/work/build/x86_64-pc-linux-gnu/32/libstdc++-v3/../libvtv/.libs
 *   /var/tmp/portage/sys-devel/gcc-6.3.0/image/usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/libstdc++.so.6.0.22
 *     RPATH: /var/tmp/portage/sys-devel/gcc-6.3.0/work/build/x86_64-pc-linux-gnu/libstdc++-v3/../libvtv/.libs
 *

 * QA Notice: The following files contain writable and executable sections
 *  Files with such sections will not work properly (or at all!) on some
 *  architectures/operating systems.  A bug should be filed at
 *  https://bugs.gentoo.org/ to make sure the issue is fixed.
 *  For more information, see:
 *
 *    https://wiki.gentoo.org/wiki/Hardened/GNU_stack_quickstart
 *
 *  Please include the following list of files in your report:
 *  Note: Bugs should be filed for the respective maintainers
 *  of the package in question and not hardened@g.o.
 * RWX --- --- usr/x86_64-pc-linux-gnu/gcc-bin/6.3.0/x86_64-pc-linux-gnu-gnatmake
 * RWX --- --- usr/x86_64-pc-linux-gnu/gcc-bin/6.3.0/x86_64-pc-linux-gnu-gnatls
 * RWX --- --- usr/x86_64-pc-linux-gnu/gcc-bin/6.3.0/x86_64-pc-linux-gnu-gnat
 * RWX --- --- usr/x86_64-pc-linux-gnu/gcc-bin/6.3.0/x86_64-pc-linux-gnu-gnatclean
 * RWX --- --- usr/x86_64-pc-linux-gnu/gcc-bin/6.3.0/x86_64-pc-linux-gnu-gnatname
sarnold commented 7 years ago

Added pax flags and filtered QA warnings (6.3 and 6.4), removed rpath cruft for all versions.