Bug#814738: pbuilder: please support building with grsec TPE enabled
Reiner Herrmann
reiner at reiner-h.de
Sun Feb 14 21:31:17 UTC 2016
Package: pbuilder
Version: 0.223
Severity: wishlist
Tags: patch
Hi,
when grsecurity is enabled together with TPE (Trusted Path Execution),
it is no longer possible to build packages with pbuilder, because the
build user is running binaries in untrusted locations (if also
tpe_invert is set).
To still enable building, the build user has to be added to the
white-listed group/gid.
The attached patch does this if TPE is enabled.
Kind regards,
Reiner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Add-build-user-to-grsec-tpe-group-if-TPE-is-enabled.patch
Type: text/x-diff
Size: 1566 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pbuilder-maint/attachments/20160214/342886b3/attachment.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pbuilder-maint/attachments/20160214/342886b3/attachment.sig>
More information about the Pbuilder-maint
mailing list