Your message dated Sun, 09 Feb 2025 00:04:38 +0000
with message-id <[email protected]>
and subject line Bug#1095522: fixed in catch2 3.7.1-0.5
has caused the Debian Bug report #1095522,
regarding catch2: not built using hardening=+pie -- causes problems when used
by packages that use it
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1095522: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095522
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
source: catch2
version: 3.7.1-0.4
severity: important
Control: affects -1 + spdlog
Control: tags -1 + patch ftbfs
Debian uses the pie (position independent executable) compile option as
default for many, but not all, architectures.
Since catch2 only builds static libraries, this will on some
architecture contain position dependent code. Using these to build pie
executables will cause problems.
This happens e.g. on x32:
$ g++ -pie -o main -lCatch2Main -lCatch2
/usr/bin/ld: /usr/lib/gcc/x86_64-linux-
gnux32/14/../../../../lib/libCatch2Main.a(catch_main.cpp.o): warning:
relocation in read-only section `.text.startup'
/usr/bin/ld: BFD (GNU Binutils for Debian) 2.44 assertion fail
../../bfd/elflink.c:15599
/usr/bin/ld: BFD (GNU Binutils for Debian) 2.44 assertion fail
../../bfd/elflink.c:15599
/usr/bin/ld: BFD (GNU Binutils for Debian) 2.44 assertion fail
../../bfd/elflink.c:15599
/usr/bin/ld: BFD (GNU Binutils for Debian) 2.44 assertion fail
../../bfd/elflink.c:15599
/usr/bin/ld: BFD (GNU Binutils for Debian) 2.44 assertion fail
../../bfd/elflink.c:15599
/usr/bin/ld: BFD (GNU Binutils for Debian) 2.44 assertion fail
../../bfd/elflink.c:15599
/usr/bin/ld: BFD (GNU Binutils for Debian) 2.44 assertion fail
../../bfd/elflink.c:15599
/usr/bin/ld: BFD (GNU Binutils for Debian) 2.44 assertion fail
../../bfd/elflink.c:15599
/usr/bin/ld: warning: creating DT_TEXTREL in a PIE
collect2: error: ld returned 1 exit status
This causes e.g. spdlog to ftbfs.
Rebuilding the catch2 package with hardening=+pie added to
DEB_BUILD_MAINT_OPTIONS solves the issue:
$ g++ -pie -o main -lCatch2Main -lCatch2
$ ./main
Randomness seeded to: 39622299
=======================================================================
========
No tests ran
With this updated package spdlog also builds.
Debdiff attacthed.
Mattias
diff -Nru catch2-3.7.1/debian/changelog catch2-3.7.1/debian/changelog
--- catch2-3.7.1/debian/changelog 2024-10-19 21:33:48.000000000 +0200
+++ catch2-3.7.1/debian/changelog 2025-02-08 18:38:12.000000000 +0100
@@ -1,3 +1,10 @@
+catch2 (3.7.1-0.5) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Add hardening=+pie to DEB_BUILD_MAINT_OPTIONS
+
+ -- Mattias Ellert <[email protected]> Sat, 08 Feb 2025 18:38:12 +0100
+
catch2 (3.7.1-0.4) unstable; urgency=medium
* Non-maintainer upload.
diff -Nru catch2-3.7.1/debian/rules catch2-3.7.1/debian/rules
--- catch2-3.7.1/debian/rules 2024-10-19 21:29:50.000000000 +0200
+++ catch2-3.7.1/debian/rules 2025-02-08 12:42:38.000000000 +0100
@@ -3,7 +3,7 @@
include /usr/share/dpkg/architecture.mk
# Disable fixfilepath, as it triggers build failures.
-export DEB_BUILD_MAINT_OPTIONS=reproducible=-fixfilepath
+export DEB_BUILD_MAINT_OPTIONS=reproducible=-fixfilepath hardening=+pie
ifeq (,$(filter nocheck,$(DEB_BUILD_OPTIONS)))
ENABLE_SELFTEST = ON
smime.p7s
Description: S/MIME cryptographic signature
--- End Message ---
--- Begin Message ---
Source: catch2
Source-Version: 3.7.1-0.5
Done: Mattias Ellert <[email protected]>
We believe that the bug you reported is fixed in the latest version of
catch2, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Mattias Ellert <[email protected]> (supplier of updated catch2
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 08 Feb 2025 18:38:12 +0100
Source: catch2
Architecture: source
Version: 3.7.1-0.5
Distribution: unstable
Urgency: medium
Maintainer: Mathieu Mirmont <[email protected]>
Changed-By: Mattias Ellert <[email protected]>
Closes: 1095522
Changes:
catch2 (3.7.1-0.5) unstable; urgency=medium
.
* Non-maintainer upload.
* Add hardening=+pie to DEB_BUILD_MAINT_OPTIONS (Closes: #1095522)
Checksums-Sha1:
f3832abeee025db818b6f4c4f88efde125d46e17 1960 catch2_3.7.1-0.5.dsc
5569a8d3b394cd25e62b3dc0f62dd6f84ecc98aa 6644 catch2_3.7.1-0.5.debian.tar.xz
720fa3f76e68dddfa7ebd16c54a8e4c6c41ed6b9 7088 catch2_3.7.1-0.5_x32.buildinfo
Checksums-Sha256:
079a606b35c0d8ee4c2f2cab573bbfeea42933ab201f9993ba930348a8cb27ea 1960
catch2_3.7.1-0.5.dsc
edb4c6fb6912deb567c4fe13382cc90a6247fc458c747a73aa979a2423a20cb4 6644
catch2_3.7.1-0.5.debian.tar.xz
37518d7e02c4716acedda392b3776b2822f467585340e36fecee807cb106ae51 7088
catch2_3.7.1-0.5_x32.buildinfo
Files:
fe1e7f3a187f04dc408b5fc1f9cad2b6 1960 devel optional catch2_3.7.1-0.5.dsc
83886840fd56caa09188b60d2a0fc2f6 6644 devel optional
catch2_3.7.1-0.5.debian.tar.xz
404b48ea6aa1e55c3b9e4d019dcd0235 7088 devel optional
catch2_3.7.1-0.5_x32.buildinfo
-----BEGIN PGP SIGNATURE-----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=anpQ
-----END PGP SIGNATURE-----
pgpcmfgcvSiGz.pgp
Description: PGP signature
--- End Message ---
