[pkg-wpa-devel] Bug#725865: Bug#725865: Please enable hardening options
Florent Daigniere
nextgens at freenetproject.org
Wed Oct 9 17:36:33 UTC 2013
On Wed, 2013-10-09 at 16:51 +0000, Stefan Lippers-Hollmann wrote:
> Hi
>
> I'm relatively confident that the actual problem has already been fixed
> in svn with r1798[1], do you agree?
>
> The afforementioned change will be part of the next wpa upload, which
> will likely happen when v2.1 gets released (v2.0 is not fit for
> release).
>
> Regards
> Stefan Lippers-Hollmann
>
> [1] http://anonscm.debian.org/viewvc/pkg-wpa/wpa/trunk/debian/rules?r1=1797&r2=1798
Hi!
I am afraid I don't; I have tried patching the current version with the
above patch and rebuilding... it leads to the following:
$hardening-check ./wpa_supplicant/wpa_supplicant
./wpa_supplicant/wpa_supplicant:
Position Independent Executable: no, normal executable!
Stack protected: yes
Fortify Source functions: yes (some protected functions found)
Read-only relocations: yes
Immediate binding: no, not found!
Whereas the expected output is:
$hardening-check $(which wpa_supplicant)
/sbin/wpa_supplicant:
Position Independent Executable: yes
Stack protected: yes
Fortify Source functions: yes (some protected functions found)
Read-only relocations: yes
Immediate binding: yes
Regards,
Florent
More information about the Pkg-wpa-devel
mailing list