NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

kern/41669: Veriexec generation with -d flag includes non-executable files by default.



>Number:         41669
>Category:       kern
>Synopsis:       Veriexec generation with -d flag includes non-executable files 
>by default.
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    kern-bug-people
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Sun Jul 05 01:25:00 +0000 2009
>Originator:     Cem Kayali
>Release:        NetbSD 5 amd64
>Organization:
>Environment:
>Description:

Hello!

#!/bin/sh
veriexecgen -r -D \
-d /usr/pkg/bin \
-d /usr/pkg/sbin \
-d /usr/pkg/lib


It includes fingerprints for non-executable files too --- though no '-a' usage. 
Sample fingerprints:

/usr/pkg/lib/perl5/man/man1/perlfaq9.1 SHA256 
136b51102b75379ced4fca30749d32a831b341af187b436cbf4a736447880667 file, indirect
/usr/pkg/lib/perl5/man/man1/perlfilter.1 SHA256 
25cabc33282859c0e2de9df565164abc7942a1313200da5b2602a7e29520ddeb file, indirect
/usr/pkg/lib/perl5/man/man1/perlfork.1 SHA256 
1eeef370fd08005253393f6a7ec727686378c8c9811286da9ea99cba4fbf2188 file, indirect
/usr/pkg/lib/perl5/man/man1/perlform.1 SHA256 
374457ea9bcded64a3f98543dda5b8dfc1d84309f6512736604c2a986fb03942 file, indirect
/usr/pkg/lib/perl5/man/man1/perlfreebsd.1 SHA256 
f646441728e2cbffce78d90512127ceaf854581654f375e6c1c5188606b7483b file, indirect


>How-To-Repeat:

Script is above. You need to have some softwares installed, ie; perl5.

>Fix:




Home | Main Index | Thread Index | Old Index