From: Todd C. Miller <Todd.Miller@courtesan.com>
Date: Wed, 3 May 2017 18:56:06 +0000 (-0600)
Subject: Warn people not to use --enable-asan in production.
X-Git-Tag: SUDO_1_8_20^2~15
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=280d5ac69111f0a6d1a6ed44c0bc05c8776caf66;p=sudo

Warn people not to use --enable-asan in production.
---

diff --git a/INSTALL b/INSTALL
index edb53a9d8..c674ac71a 100644
--- a/INSTALL
+++ b/INSTALL
@@ -173,6 +173,11 @@ Compilation options:
         https://github.com/google/sanitizers/wiki/AddressSanitizer
 	The following compiler flag is used: -fsanitize=address,undefined
 
+        This option should only be used for testing and not in a
+        production environment.  Due to AddressSanitizer's unchecked
+        use of environment variables, it is trivial to exploit a
+        setuid root executable such as sudo.
+
   --enable-pie
         Build sudo and related programs as as a position independent
         executables (PIE).  This improves the effectiveness of address