Ubuntu
hardening-wrapper package

lp:ubuntu/maverick/hardening-wrapper

Maverick (10.10)
maverick

Created by James Westby on 2010-04-30 and last modified on 2010-07-09

Get this branch:: bzr branch lp:ubuntu/maverick/hardening-wrapper

Members of Ubuntu branches can upload to this branch. Log in for directions.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Mature

Recent revisions

21. By Kees Cook on 2010-07-09: * debian/control: add Conflicts for binutils-multiarch (Closes: 579409,
LP: #596136).
* debian/hardening-wrapper.postrm: remove attempted diversions on
installation failure.
20. By Kees Cook on 2010-06-20: hardening.make: enable PIE on hurd (Closes: 586215), thanks to
Samuel Thibault.
19. By Kees Cook on 2010-04-23: * hardening.make:
- disable RELRO on avr32.
- clarify use of CXXFLAGS.
* hardening-check: fix regex to correctly call sed (Closes: 578488).
18. By Kees Cook on 2010-03-01: * debian/control:
  - bump standards version: no changes needed.
  - should not be considered "experimental".
* hardening-check: use readelf's "-s" instead of "-r" to avoid issues
  with archs that lack sane relocations.
* tests/Makefile.common:
  - adjust tests to include -s output.
  - weaken nm symbol matching.
17. By Kees Cook on 2010-02-09: * hardening-check: handle alternate names for relocation jump slots
(Closes: 568622)
* tests/Makefile.common: show relocations as well for future debugging.
16. By Kees Cook on 2010-01-30: * hardening.make: correctly document how to disable PIE on a per-target
basis (Closes: 567707).
* tests/Makefile.{common,includes}: add HARDENING_DISABLE_* flags tests.
15. By Kees Cook on 2010-01-12: debian/hardening-wrapper.postrm: fix typo in diversion name
(Closes: 564840).
14. By Kees Cook on 2010-01-10: * debian/control: add ${misc:Depends} to control file entries to
keep lintian happy.
* hardening-check: add -q option to only report failures.
* really handle gcc 4.5 diversion (Closes: 564596).
* handle ld diversion when binutils-gold installed (Closes: 535037).
13. By Kees Cook on 2009-12-25: * hardening.make:
  - switch to "filter" for easier to read logic.
  - allow PIE for arm/armel, since it's only the kernel that lacks ASLR.
* tests/Makefile: perform test builds with -fstack-protector and -fPIE -pie
  on all architectures just to have a record of the success/failure
  in the build logs, even if we are manually selecting the defaults.
12. By Kees Cook on 2009-11-25: Add Conflicts on binutils-gold, which also uses diversions against
gcc and friends (Closes: 535037, LP: #442636).

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/natty/hardening-wrapper

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntuhardening-wrapper package