Comment 10 for bug 1301108
Revision history for this message
| Matthias Klose (doko) wrote Re: [Bug 1301108] Re: [MIR] pyqt5 | #10 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
7020100
(Get the code!)
Am 04.04.2014 09:07, schrieb Seth Arnold:
> I'd appreciate another look at the package hardening; the pyqt5 build
> logs show that fortify is requested for 584 compilations (give or take
> grep mistakes), the stack protector for 584 compilations, PIE and pie
> for 72 to 74 compilations, and there's 790-ish compilations total. But
> hardening-check reports of the object files:
>
> - 2 objects have Fortify Source functions, 25 do not, 29 not needed
> - 2 executables are not compiled PIE
> - 3 objects have stack protection, 53 do not.
>
> I would like to know why the 25 object files don't have Fortify source
> turned on, and why 53 of 56 object files didn't get stack protection
> turned on.
I didn't look at the build logs, however if you just check the binary loadable
extensions (.so files) you get many false positives. Seen with other extension
modules as well. So you have to analyze the build log.