Your message dated Fri, 11 Aug 2017 12:44:51 -0700
with message-id <[email protected]>
and subject line Closing inactive Policy bugs
has caused the Debian Bug report #291631,
regarding Prohibit executable stacks (require PT_GNU_STACK header)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
291631: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=291631
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: diff
Version: 2.8.1-9
Severity: minor
The binaries appear to have been built without the PT_GNU_STACK header,
which makes the 2.6.10 kernel enable read-implies-exec behaviour. This
in turn causes problems under SELinux, because executable stacks are not
typically allowed for legacy binaries.
$ execstack -q `which cmp diff`
? /usr/bin/cmp
? /usr/bin/diff
It appears that rebuilding with a current toolchain is all that's
required to work around this issue. I didn't have to do anything
special under sid (i386), at least.
$ gcc --version | head -1
gcc (GCC) 3.3.5 (Debian 1:3.3.5-6)
$ execstack -q `which cmp diff`
- /usr/bin/cmp
- /usr/bin/diff
I've set the severity to minor, since SELinux isn't currently integrated
into Debian proper. Please let me know if you need any additional
information.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (990, 'unstable'), (101, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.11-rc1
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
Versions of packages diff depends on:
ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an
-- no debconf information
--- End Message ---
--- Begin Message ---
control: user [email protected]
control: usertag -1 +obsolete
control: tag -1 +wontfix
Russ Allbery and I did a round of in-person bug triage at DebConf17 and
we are closing this bug as inactive.
The reasons for closing fall into the following categories, from most
frequent to least frequent:
- issue is appropriate for Policy, there is a consensus on how to fix
the problem, but preparing the patch is very time-consuming and no-one
has volunteered to do it, and we do not judge the issue to be
important enough to keep an open bug around;
- issue is appropriate for Policy but there does not yet exist a
consensus on what should change, and no recent discussion. A fresh
discussion might allow us to reach consensus, and the messages in the
old bug are unlikely to help very much; or
- issue is not appropriate for Policy.
If you feel this bug is still relevant and want to restart the
discussion, you can re-open the bug. However, please consider instead
opening a new bug with a message that summarises and condenses the
previous discussion, updates the report for the current state of Debian,
and makes clear exactly what you think should change.
A lot of these old bugs have long side tangents and numerous messages,
and that old discussion is not necessarily helpful for figuring out what
Debian Policy should say today.
--
Sean Whitton
signature.asc
Description: PGP signature
--- End Message ---
