Bug#391353: [Pkg-aide-maintainers] Bug#391353: aide: Doesn't work
suitably on Xen enabled kernel because of statically linked libc
Raphael Hertzog
hertzog at debian.org
Fri Oct 6 10:06:05 UTC 2006
On Fri, 06 Oct 2006, Marc Haber wrote:
> > I see two solutions:
> > - either you link again libc6 dynamically
>
> That's going to render aide useless, see README.Debian.gz.
Useless is a bit strong... I understand the need to be paranoid and
that's why I'm ok with the default of using a statically linked version.
> > So for etch, the right thing to do might be to provide additionnaly
> > a binary dynamically linked and to use the dynamic one if you detect
> > /proc/xen.
>
> I beg to differ. I'll probably make aide bail out if /proc/xen is
> detected.
This is the minimum, yes. However I would highly prefer having the
possibility to run a less secure aide rather than not running it at all.
> > - either you provide two versions of the binary and you use alternatives
> > (or you modify the cron script to detect /proc/xen and to start the
> > right binary)
>
> Send a patch, please.
What patch would you accept? You seem to not want my proposal of providing
both a dynamicly linked version and a statically linked version...
> A third solution would be to link aide either against dietlibc or the
> non-tls version of glibc. I do not have a clue how to do this.
Neither do I.
> > However it looks like there's no "libc6-xen-dev" to link statically a
> > xen-enabled libc6...
>
> That would be a libc6 bug.
Aurelien Jarno told it's very difficult to provide this. There's very
little chance that you get that for etch.
Cheers,
--
Raphaël Hertzog
Premier livre français sur Debian GNU/Linux :
http://www.ouaza.com/livre/admin-debian/
More information about the Pkg-aide-maintainers
mailing list