Hi, On Monday, 13 November 2023 at 12:07, Aoife Moloney wrote: [...] > == Summary == > Change the system linker (ld.bfd) so that by default it will generate > an error message and fail if it is asked to create an executable > binary that contains one or more known security issues. These issues > are: > * an executable stack > * a loadable segment with read, write and execute permissions, > * a thread local storage segment with execute permission. [...] > * Other developers: [...] > Other developers can use the "--no-warn-execstack" and > "--no-warn-rwx-segments" linker command line options to disable the > errors.
Three issues were mentioned to start causing errors, but only two options to disable this new behaviour. Does the `--no-warn-rwx-segments` disable erroring out on both loadable rwx segments and tls rwx segments? In general, I'm +1 to this change. Potential security issues should be detected as early as possible. Regards, Dominik -- Fedora https://fedoraproject.org There should be a science of discontent. People need hard times and oppression to develop psychic muscles. -- from "Collected Sayings of Muad'Dib" by the Princess Irulan _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
