[M3devel] runpath/unshipped vs. shipped binaries

Jay jay.krell at cornell.edu
Mon Apr 6 10:43:52 CEST 2009 

Good point thanks, /usr/random better than /tmp/random.
 I'd build as root, so you are safe from non-root, or somesuch.
Hopefully it'll become moot.
I have made progress inserting $ORIGIN at the front already.
I need to double check if that is /cm3/lib or /cm3/pkg/foo/linuxlibc6.
Hopefully /cm3/lib.
And then see about removing the rest.
Solaris is looking good, at least.
NetBSD doesn't support $origin.
(but hey, my NetBSD machine is booted to FreeBSD currently, where, besides these issues, I want to switch to the new/small/portable Unix/*.i3 files :) )
 
 
Ok, Linux/x86 is looking good.
Just a tad ugly, you end up with "../lib" for each level in the dependency tree:
 
ldd -v /cm3/bin/Juno:
 
libm3X11R4.so.5 => /home/jay/cm3/bin/../lib/../lib/libm3X11R4.so.5
 
but that's ok.
 
 
Pray tell, what's the difference between RPATH and RUNPATH?
 
objdump -f -x /cm3/bin/Juno
 
Dynamic Section:
  NEEDED      libjuno-compiler.so.5
  NEEDED      libjuno-machine.so.5
  NEEDED      libm3formsvbt.so.5
  NEEDED      libm3vbtkit.so.5
  NEEDED      libm3ui.so.5
  NEEDED      libm3netobj.so.5
  NEEDED      libm3.so.5
  NEEDED      libm3core.so.5
  NEEDED      libc.so.6
  RPATH       $ORIGIN/../lib
  RUNPATH     $ORIGIN/../lib
 
 - Jay


----------------------------------------
> Date: Mon, 6 Apr 2009 01:35:42 -0700
> From: carson at taltos.org
> To: jay.krell at cornell.edu
> CC: m3devel at elegosoft.com
> Subject: Re: [M3devel] runpath/unshipped vs. shipped binaries
>
> BTW, I'm glad you're working on this, I just want to make sure we end up
> someplace better ;-)
>
> Jay wrote:
>> Well, the big polluted runpath is how Modula-3 has always built
>> things. The only reason for /tmp/tmprandom is because I build up an
>> entire new install from scratch. Otherwise it would be
>> /usr/local/cm3/pkg/... or such. If you look at the distributions Olaf
>> has put out you can see he does similar. I think the Tinderbox builds
>> are the same.
>
> The problem with using /tmp is that _any_ user can throw their own .so's
> in there. Bogus /usr/... paths are still unfortunate, but not a security
> nightmare like /tmp/... paths are.
>
> It may be that re-organizing the build system to behave better is more
> work than you have time for at the moment, and throwing in a $ORIGIN
> RPATH isn't a bad thing even if you don't fix the rest. But please don't
> ship binaries with an RPATH containing /tmp - someone will hurt themselves.
>
> --
> Carson

More information about the M3devel mailing list