DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD General

OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 4 Weeks Ago
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 5,073
Default Operational change required for OpenBSD -current users

The Following -current FAQ has a new entry:
Quote:
2016/05/27 - fstab needs wxallowed flag on /usr/local

W^X violating programs are no longer allowed by default, but will have to opt-in via some mechanisms which allow the violation. These mechanisms are being introduced into the system one by one, in cooperation with the ports development team. The first mechanism is that filesystems containing violating programs must be mounted using the wxallowed option, for instance:
01020304050607.h /usr/local ffs rw,nodev,nosuid,wxallowed 1 2
The base system has no W^X violating programs, but the ports tree contains a quite a few: chromium, mono, node, gnome, libreoffice, jdk, zeal, etc. Progress in this area will be defined by repairing libraries and programs so that they don't request PROT_WRITE | PROT_EXEC memory. The library libffi (Used by python for instance) was the first to be fixed. It is expected that most users will use the wxallowed option on /usr/local, but developers who wish to assist in the effort of repairing upstream software can keep it disabled and also use the kern.wxabort option (see sysctl(8)) which helps with debugging. The upgrade process cannot automatically modify fstab to add this flag to /usr/local; therefore it must be added by hand. Some ports also perform W^X violations during build-time, so the same option may be desireable on /usr/pobj or other directories.
OpenBSD -current users should always check this FAQ before updating their systems.
Reply With Quote
  #2   (View Single Post)  
Old 4 Weeks Ago
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 3,194
Default

Simply as anecdotal information, I performed a fresh install of 6.0-beta today on a system which has a /usr partition & numerous partitions beneath /usr/ports. The install script is smart enough to mark /usr (which will contain /usr/local...) as wxallowed, but none of the partitions beneath /usr/ports.

Interesting.

The moral of this story is that users performing fresh installations will not need to manually edit /etc/fstab. The partitions requiring wxallowed appear to be automatically modified.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
7 May "Flag day" for OpenBSD -current users jggimi OpenBSD General 0 8th May 2016 02:13 PM
PKG_PATH change in Current shep OpenBSD Installation and Upgrading 2 6th February 2016 08:47 PM
for current users playing with doas ocicat OpenBSD General 0 22nd July 2015 02:49 PM
Netstart / Required Reboots on Interface Changes dylanz OpenBSD General 0 17th June 2010 05:48 PM
Required packages for running X enpey FreeBSD Ports and Packages 7 20th August 2008 09:16 AM


All times are GMT. The time now is 12:57 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2016, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick