reopen 656004 thanks Dear Maintainer,
The CFLAGS hardening flags are missing because ./configure clears
them.
The following patch fixes the issue, if possible it should be
sent to upstream.
--- netrik-1.16.1.orig/configure.ac
+++ netrik-1.16.1/configure.ac
@@ -1,8 +1,9 @@
-dnl preserve initial CFLAGS
-CFLAGS_OLD="$CFLAGS"
-
dnl initialize
AC_INIT(main.c)
+
+dnl preserve initial CFLAGS - must come after AC_INIT or it isn't run!
+CFLAGS_OLD="$CFLAGS"
+
VER=`head -1 $srcdir/README |sed 's/ *netrik \([[^ ]]*\).*/\1/'`
AM_INIT_AUTOMAKE(netrik, $VER)
To check if all flags were correctly enabled you can use
`hardening-check` from the hardening-includes package and check
the build log (hardening-check doesn't catch everything):
$ hardening-check /usr/bin/netrik
/usr/bin/netrik:
Position Independent Executable: no, normal executable!
Stack protected: yes
Fortify Source functions: yes (some protected functions found)
Read-only relocations: yes
Immediate binding: no not found!
Regards,
Simon
--
+ privacy is necessary
+ using gnupg http://gnupg.org
+ public key id: 0x92FEFDB7E44C32F9
signature.asc
Description: Digital signature
