| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
gentuxx wrote: |
| 5 |
|
| 6 |
> I'm in the process of migrating my U5 system to an SELinux profile. |
| 7 |
> Thanks to Gustavo Zacarias and his excellent kernel work, I've managed |
| 8 |
> to get through the most of the migration guide (after an ugly battle |
| 9 |
> trying to get a functional hardened-sources kernel). Now I'm sort of |
| 10 |
> at a "time to jump off the cliff" point. I'm booted in the new |
| 11 |
> environment, with the hardened kernel, selinux profile, selinux policy |
| 12 |
> tools, and selinux base policy. I'm about to run an `emerge -DuatvN |
| 13 |
> world' to pull in all of the remaining selinux-policy packages, and |
| 14 |
> recompile installed packages that need it with the new USE flags. |
| 15 |
> But, alas, if it were only that easy. |
| 16 |
> |
| 17 |
> Emerge fails right away stating "All ebuilds that could satisfy |
| 18 |
> ">=sys-devel/gcc-3.4" have been masked.". All of the versions are |
| 19 |
> masked by profile (and missing keyword). So my question is three-fold: |
| 20 |
|
| 21 |
I'd venture to say the SELinux profile hasn't been updated/tested in |
| 22 |
some time. It's handled by the selinux/hardened team so we can't help |
| 23 |
much there. |
| 24 |
|
| 25 |
> 1) If I put '<=sys-devel/gcc-4.2.0 ~sparc' in the |
| 26 |
> /etc/portage/package.keywords file, will that satisfy the masking and |
| 27 |
> allow me to install gcc-4.1.1-r1- even if it's masked by my profile? |
| 28 |
> |
| 29 |
> 2) I am currently running the selinux/2005.1/sparc64 profile. Is |
| 30 |
> there a newer one that would satisfy the above maskings? If so, what |
| 31 |
> do I need to emerge to get it on my system? Portage? I'm already |
| 32 |
> running portage-2.1-r1. |
| 33 |
|
| 34 |
I'd say try with the current stable toolchain for sparc rather than |
| 35 |
venturing into higher things. |
| 36 |
|
| 37 |
> 3) Finally, what are your experiences with running a newer (>=4.0) |
| 38 |
> version of gcc on sparc? I want this system to be rock solid, so I'm |
| 39 |
> a little apprehensive about unmasking and running the |
| 40 |
> newest-greatest-fastest gcc, being such a fundamental part of a gentoo |
| 41 |
> system. |
| 42 |
|
| 43 |
The greatest and fastest gcc won't let you emerge system as it currently |
| 44 |
stands. Mostly other ebuilds need fixing, out of the top of my head |
| 45 |
linux-headers needs love and at least kbd will break without it. |
| 46 |
|
| 47 |
- -- |
| 48 |
Gustavo Zacarias |
| 49 |
Gentoo/SPARC monkey |
| 50 |
-----BEGIN PGP SIGNATURE----- |
| 51 |
Version: GnuPG v1.4.4-ecc0.1.6 (GNU/Linux) |
| 52 |
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org |
| 53 |
|
| 54 |
iD4DBQFEsnTjV3G/IBCn/JARAo/LAJd4DOD3O+Pbr+1ZP9rLKRRWp7oVAJ9I3vgI |
| 55 |
b5tvpLGeg/O48Se8kDvbeg== |
| 56 |
=Q2BK |
| 57 |
-----END PGP SIGNATURE----- |
| 58 |
-- |
| 59 |
gentoo-sparc@g.o mailing list |
Archives