[arch-dev-public] Proposal: enabling full ASLR on x86_64 via hardening-wrapper
Allan McRae
allan at archlinux.org
Sun Dec 21 23:44:39 UTC 2014
On 22/12/14 06:53, Daniel Micay wrote:
> One more thing to note about this is that we'd need to do a rebuild of
> the remaining 186 packages with static libraries. In many cases, those
> libraries will probably just vanish thanks to the !staticlibs default.
Yet we have already rebuilt ALL packages since adding this default.The
static libraries left have no shared coutnerpart.
> Static libraries aren't currently built as position independent unless
> they're meant to be usable in dynamic libraries.
>
> I think the only case where setting HARDENING_PIE=0 would be necessary
> is to deal with proprietary static libraries that are non-PIC/PIE but
> AFAIK there are none in the repositories anyway.
>
More information about the arch-dev-public
mailing list