[20201] in Kerberos_V5_Development
Re: Permissions for shared libraries in Kerberos
daemon@ATHENA.MIT.EDU (Russ Allbery)
Wed Nov 18 14:35:14 2020
From: Russ Allbery <eagle@eyrie.org>
To: Ken Hornstein <kenh@cmf.nrl.navy.mil>
In-Reply-To: <202011181853.0AIIr4Ww018647@hedwig.cmf.nrl.navy.mil> (Ken
Hornstein's message of "Wed, 18 Nov 2020 13:53:04 -0500")
Date: Wed, 18 Nov 2020 11:34:53 -0800
Message-ID: <87pn4a31cy.fsf@hope.eyrie.org>
MIME-Version: 1.0
Cc: krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
Ken Hornstein <kenh@cmf.nrl.navy.mil> writes:
> Oh, interesting. So ... is this just a _packaging_ thing?
Yeah, basically. I don't think Debian Policy has any requirement about
this, but dh_fixperms in debhelper will remove the executable bits. The
packaging scripts for glibc add the executable bit back to libc.so.6
because it prints out useful information when exected.
% /lib/x86_64-linux-gnu/libc.so.6
GNU C Library (Debian GLIBC 2.31-4) stable release version 2.31.
Copyright (C) 2020 Free Software Foundation, Inc.
This is free software; see the source for copying conditions.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
Compiled by GNU CC version 10.2.0.
libc ABIs: UNIQUE IFUNC ABSOLUTE
For bug reporting instructions, please see:
<http://www.debian.org/Bugs/>.
> I personally have no opinion on whether or not the execute bit SHOULD be
> set in general on shared libraries; it seems like there's valid
> arguments for both sides. My only point was that it seems like at least
> Linux systems that use RPM expect it to be there, but clearly that's not
> even a universal requirement across all Linux distributions.
Yeah, coming from a Debian background, I find that very surprising, but I
can confirm that all the shared libraries seem to be executable on Red Hat
systems, so this is a real distribution difference.
--
Russ Allbery (eagle@eyrie.org) <https://www.eyrie.org/~eagle/>
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
