security.bsd.map_at_zero=0 problem with samba33 (including
solution)
Mike Tancsa
mike at sentex.net
Mon Oct 5 14:48:39 UTC 2009
At 12:47 PM 10/4/2009, Andre Albsmeier wrote:
>On Sat, 03-Oct-2009 at 22:27:39 +0000, Bjoern A. Zeeb wrote:
> > On Sat, 3 Oct 2009, Andre Albsmeier wrote:
> >
> > Hi,
> >
> > > On Sat, 03-Oct-2009 at 16:27:32 -0400, jhell wrote:
> > >> On Sat, 3 Oct 2009 14:42 -0000, Andre.Albsmeier wrote:
> > >>
> > >>> FYI,
> > >>>
> > >>> after setting security.bsd.map_at_zero to 0 on 7.2-STABLE all
> > >>> samba33 programmes did abort() immediately after start. The
> > >>> solution was to use
> > >>>
> > >>> CONFIGURE_ARGS+= --disable-pie
> > >>>
> > >>> -Andre
> > >>>
> > >>
> > >> To add an additional note samba33 even when not running (not
> enabled by a rcvar)
> > >> also runs a tdbcleanup routine on shutdown and/or start that also does
> > >> abort().
> > >
> > > Yes, every samba programme is linked with -pie per default (so
> > > all abort()).
> >
> >
> > Thanks for reporting the issue. People are aware of the problem now
> > and we'll try to present a solution within the next days for better
> > position-independent executable (PIE) handling.
> >
> > Meanwhile there are multiple solutions for people affected:
> >
> > (1) recompile the port; but as more than just samba might be affected
> > and we generally do not want to flip the pie switch everywhere that's
> > probably only a temporary, private solution.
>
>I'll stick to this since I am happy about having the map_at_zero
>option and want to continue to try it out on 7.2-STABLE. And I
>see now reason why samba has to be linked with -pie (without -pie
>it is also 4% smaller).
Hi,
What are the impacts (if any) of compiling all the ports with PIE
disabled that are effected by setting security.bsd.map_at_zero=0 ?
---Mike
--------------------------------------------------------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, mike at sentex.net
Providing Internet since 1994 www.sentex.net
Cambridge, Ontario Canada www.sentex.net/mike
More information about the freebsd-stable
mailing list