-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unsatisfied secure compilation options -fPIE -pie #5844
Comments
In the current source code we use the -fPIC option, what scanning tool are you using? I want to reproduce this scan result. |
The replies in the mentioned post are not correct. The |
Yes, my code exists -fPIE -pie . But I used the security tool to scan nebula-graphd, the result showed that the -fPIE -pie not activated. I'd like to consult the reasons and the security risks.
|
I already explained the reason. What PIE does explains the risks. |
I used a scanning tool to scan the nebula-graphd file and found Unsatisfied secure compilation options -fPIE -pie. I saw a related reply in the community: Nebula relies on static libraries and does not need this option. (https://discuss.nebula-graph.com.cn/t/topic/2846/2)
Is there a formal conclusion and reason for this?
The text was updated successfully, but these errors were encountered: