Please show hardening flags in about:buildconfig
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
firefox (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Hi,
the firefox package provided by Ubuntu seems to be built with hardening flags, for instance:
$ hardening-check /usr/lib/
/usr/lib/
Position Independent Executable: yes
Stack protected: yes
Fortify Source functions: yes (some protected functions found)
Read-only relocations: yes
Immediate binding: yes
$ hardening-check /usr/lib/
/usr/lib/
Position Independent Executable: no, regular shared library (ignored)
Stack protected: yes
Fortify Source functions: yes (some protected functions found)
Read-only relocations: yes
Immediate binding: no, not found!
but the compilation options (-fstack-
Here is what I have in about:buildconf
about:buildconf
Source
Built from https:/
Build platform
target
x86_64-pc-linux-gnu
Build tools
Compiler Version Compiler flags
/usr/bin/gcc -std=gnu99 6.2.0 -Wall -Wempty-body -Wignored-
/usr/bin/g++ -std=gnu++11 6.2.0 -Wall -Wc++11-compat -Wempty-body -Wignored-
When I look at the same page in the firefox build in Debian stretch, here is what I see:
about:buildconf
Build platform
target
x86_64-pc-linux-gnu
Build tools
Compiler Version Compiler flags
gcc 6.3.0 -Wall -Wempty-body -Wpointer-
g++ 6.3.0 -Wdate-time -D_FORTIFY_SOURCE=2 -Wall -Wempty-body -Woverloaded-
The D_FORTIFY_SOURCE=2 and -fstack-
ProblemType: Bug
DistroRelease: Ubuntu 16.10
Package: firefox 52.0+build2-
ProcVersionSign
Uname: Linux 4.10.1-
AddonCompatChec
ApportVersion: 2.20.3-0ubuntu8.2
Architecture: amd64
AudioDevicesInUse:
USER PID ACCESS COMMAND
/dev/snd/
BuildID: 20170303012224
Channel: Unavailable
CurrentDesktop: KDE
Date: Thu Mar 9 15:55:13 2017
DefaultProfileE
DefaultProfileI
DefaultProfileL
DefaultProfileP
DefaultProfileP
/usr/lib/
prefs.js
[Profile]/<email address hidden>
DefaultProfileT
EcryptfsInUse: Yes
ForcedLayersAccel: False
IfupdownConfig:
# interfaces(5) file used by ifup(8) and ifdown(8)
auto lo
iface lo inet loopback
IpRoute:
default via 193.55.51.129 dev eth0 proto static metric 100
169.254.0.0/16 dev eth0 scope link metric 1000
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown
193.55.51.37 via 193.55.51.129 dev eth0 proto dhcp metric 100
193.55.51.128/26 dev eth0 proto kernel scope link src 193.55.51.166 metric 100
Profile1Extensions: extensions.sqlite corrupt or missing
Profile1Incompa
Profile1Locales: extensions.sqlite corrupt or missing
Profile1Plugins: Shockwave Flash - /usr/lib/
Profile1PrefSou
/usr/lib/
prefs.js
Profile1Themes: extensions.sqlite corrupt or missing
Profiles:
Profile0 (Default) - LastVersion=
Profile1 - LastVersion=
RunningIncompat
SourcePackage: firefox
UpgradeStatus: No upgrade log present (probably fresh install)
dmi.bios.date: 11/14/2013
dmi.bios.vendor: Dell Inc.
dmi.bios.version: A19
dmi.board.name: 0NVF5K
dmi.board.vendor: Dell Inc.
dmi.board.version: A01
dmi.chassis.type: 9
dmi.chassis.vendor: Dell Inc.
dmi.modalias: dmi:bvnDellInc.
dmi.product.name: Latitude E6520
dmi.product.
dmi.sys.vendor: Dell Inc.
Firefox changed completely since this report, so closing.