| 1 |
On Fri, 10 Jan 2014 01:35:09 -0500 |
| 2 |
"Rick \"Zero_Chaos\" Farina" <zerochaos@g.o> wrote: |
| 3 |
|
| 4 |
> More to the point, "this specific use flag" appears to have no purpose |
| 5 |
> what-so-ever. If a user can do exactly the same with |
| 6 |
> CFLAGS=-fno-stack-protector in make.conf, and it would be INSANE for a |
| 7 |
> package to dep on gcc[nossp] then this is has got to be one of the most |
| 8 |
> useless use flags in gentoo. |
| 9 |
|
| 10 |
Having slept on it I'm starting to agree. My first argument was that on |
| 11 |
hardened ssp is -fstack-protector-all, which is much more expensive, and it |
| 12 |
adds -fstack-check and -z,now to the linker by default as well. The pie half |
| 13 |
adds -fPIE but also a crtbeginP section for linking static libs with -pie. So |
| 14 |
there are situations where you want to disable one or both, if only for |
| 15 |
testing. But what I forgot is that hardened installs multiple gcc-config |
| 16 |
profiles to switch these out on the fly. So there goes that idea. |
| 17 |
|
| 18 |
It might be useful to have these flags so we can mask them on archs that don't |
| 19 |
support ssp/pie. But that's always been true and it looks like sh is the only |
| 20 |
place we've bothered for some reason. |
| 21 |
|
| 22 |
> Not saying I would block this patch, not saying it has to be this |
| 23 |
> second, but I see this use flag as a small example of things in |
| 24 |
> toolchain which could probably be cleaned up if fresh eyes were to see |
| 25 |
> things. |
| 26 |
|
| 27 |
Yes, and believe it or not I appreciate the input. I know I'm stubborn as hell |
| 28 |
but eventually common sense gets through. |
| 29 |
|
| 30 |
|
| 31 |
-- |
| 32 |
Ryan Hill psn: dirtyepic_sk |
| 33 |
gcc-porting/toolchain/wxwidgets @ gentoo.org |
| 34 |
|
| 35 |
47C3 6D62 4864 0E49 8E9E 7F92 ED38 BD49 957A 8463 |
Archives