projects / mirror_zfs.git / blame
| Commit | Line | Data |
|---|---|---|
| f26eb428 JZ |
1 | #!/bin/sh |
| 2 | ||
| f7d7ee05 | 3 | if ! command -v scanelf > /dev/null; then |
| f26eb428 JZ |
4 | echo "scanelf (from pax-utils) is required for these checks." >&2 |
| 5 | exit 3 | |
| 6 | fi | |
| 7 | ||
| 8 | RET=0 | |
| 9 | ||
| 10 | # check for exec stacks | |
| c552fbc5 | 11 | OUT=$(scanelf -qyRAF '%e %p' "$1") |
| f26eb428 JZ |
12 | |
| 13 | if [ x"${OUT}" != x ]; then | |
| 14 | RET=2 | |
| 15 | echo "The following files contain writable and executable sections" | |
| 16 | echo " Files with such sections will not work properly (or at all!) on some" | |
| 17 | echo " architectures/operating systems." | |
| 18 | echo " For more information, see:" | |
| 19 | echo " https://wiki.gentoo.org/wiki/Hardened/GNU_stack_quickstart" | |
| 20 | echo | |
| 21 | echo "${OUT}" | |
| 22 | echo | |
| 23 | fi | |
| 24 | ||
| 25 | ||
| 26 | # check for TEXTRELS | |
| c552fbc5 | 27 | OUT=$(scanelf -qyRAF '%T %p' "$1") |
| f26eb428 JZ |
28 | |
| 29 | if [ x"${OUT}" != x ]; then | |
| 30 | RET=2 | |
| 31 | echo "The following files contain runtime text relocations" | |
| 32 | echo " Text relocations force the dynamic linker to perform extra" | |
| 33 | echo " work at startup, waste system resources, and may pose a security" | |
| 34 | echo " risk. On some architectures, the code may not even function" | |
| 35 | echo " properly, if at all." | |
| 36 | echo " For more information, see:" | |
| 37 | echo " https://wiki.gentoo.org/wiki/Hardened/HOWTO_locate_and_fix_textrels" | |
| 38 | echo | |
| 39 | echo "${OUT}" | |
| 40 | echo | |
| 41 | fi | |
| 42 | ||
| 83613696 | 43 | exit "$RET" |