Le sam. 23 sept. 2023, 17:16, Waldek Hebisch <[email protected]> a écrit :
> On Sat, Sep 23, 2023 at 04:27:36PM +0200, Grégory Vanuxem wrote: > > UPDATE > > > > if I delete the build directory, home/greg//Tmp/fricas, all is right. > > > <snip> > > > └─$ /usr/local/lib/fricas/target/x86_64-linux-gnu/bin/FRICASsys > > > Checking for foreign routines > > > FRICAS="/home/greg/Tmp/fricas/target/x86_64-linux-gnu" > > > spad-lib="/home/greg/Tmp/fricas/target/x86_64-linux-gnu/lib/libspad.so" > > Unfortunately, this is expected effect of our current logic. > We probably should reset $spadroot to NIL when dumping an image. > Or maybe we should do this at image startup. > Personally I would reset it but I do not know the startup logic as of now, I guess this is necessary somewhere. > Security folks consider hardcoded paths to build directories > as voulnerability: when FriCAS is installed systemwide person > who can write to hardcoded location can cause other folks > to execute arbitrary program instead of FriCAS. > This is approximately what I thought. More precisely one can think about a completely broken libspad.so in the hardcoded path because of work on it, the system wide FriCAS will also be broken. In any case many thanks for this information, so I will push the util.lisp modifications, I wanted to know that. __ Greg -- > Waldek Hebisch > > -- > You received this message because you are subscribed to the Google Groups > "FriCAS - computer algebra system" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/fricas-devel/ZQ8BSJ4c%2B3q56aJh%40fricas.org > . > -- You received this message because you are subscribed to the Google Groups "FriCAS - computer algebra system" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/fricas-devel/CAHnU2daQjdAqu8ASAJYQhp7Guhw31PtqMFb%2BkioL%3DaKOnDQRKw%40mail.gmail.com.
