From: Michael Tremer <michael.tremer@ipfire.org>
Date: Wed, 15 Mar 2023 16:33:18 +0000 (+0000)
Subject: file: Do not check for SSP for runtime linkers
X-Git-Tag: 0.9.29~311
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=fc35e5cc47b8b2eac1eb0fc299f6d51d4dde501a;p=pakfire.git

file: Do not check for SSP for runtime linkers

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
---

diff --git a/src/libpakfire/file.c b/src/libpakfire/file.c
index 99130a4b3..91f7a82fd 100644
--- a/src/libpakfire/file.c
+++ b/src/libpakfire/file.c
@@ -1160,6 +1160,7 @@ static const struct extension {
 	{ "*.pm", PAKFIRE_FILE_PERL },
 	{ "*.pc", PAKFIRE_FILE_PKGCONFIG },
 	{ "/usr/lib/firmware/*", PAKFIRE_FILE_FIRMWARE },
+	{ "/usr/lib*/ld-*.so*", PAKFIRE_FILE_RUNTIME_LINKER },
 	{ NULL , 0 },
 };
 
@@ -1754,6 +1755,10 @@ static int __pakfire_file_hardening_check_ssp(
 }
 
 static int pakfire_file_hardening_check_ssp(struct pakfire_file* file) {
+	// Do not perform this check for runtime linkers
+	if (pakfire_file_matches_class(file, PAKFIRE_FILE_RUNTIME_LINKER))
+		return 0;
+
 	return pakfire_file_open_elf(file, __pakfire_file_hardening_check_ssp, NULL);
 }
 
diff --git a/src/libpakfire/include/pakfire/file.h b/src/libpakfire/include/pakfire/file.h
index d284fc823..4fc0b2361 100644
--- a/src/libpakfire/include/pakfire/file.h
+++ b/src/libpakfire/include/pakfire/file.h
@@ -120,6 +120,7 @@ enum pakfire_file_classes {
 	PAKFIRE_FILE_STATIC_LIBRARY  = (1 << 11),
 	PAKFIRE_FILE_LIBTOOL_ARCHIVE = (1 << 12),
 	PAKFIRE_FILE_FIRMWARE        = (1 << 13),
+	PAKFIRE_FILE_RUNTIME_LINKER  = (1 << 14),
 };
 
 int pakfire_file_create_from_path(struct pakfire_file** file,