1 |
Hi |
2 |
|
3 |
The patch add use flag for pch, so it can be disable. |
4 |
We add support to use the configure options for pie and ssp |
5 |
instead of the -D* hack for it. |
6 |
The hardened use flag will add or remove some compile options as, |
7 |
-fstrict_overflow will be turn of for -O2 and higher, |
8 |
-fstack-check is added as default and |
9 |
we change from -fstack-protect-strong to -fstack-protect-all. |
10 |
It will not be any hardenedno* and vanilla options in gcc-config. |
11 |
That is all change we bee do for hardened. |
12 |
|
13 |
Ssp will be enable as default when i fix that it can be disable with -nostdlib. |
14 |
For the pie part it will be option to enable even for default user in the |
15 |
amd64 arch when the major bugs i fixed for it. See the tracker https:// |
16 |
bugs.gentoo.org/show_bug.cgi?id=582688 any bugs should be upstreamed for we |
17 |
just configure gcc to default to pie/ssp as default that gcc 6.x has support |
18 |
for. |
19 |
|
20 |
/Magnus G. |
21 |
Gentoo Hardened Lead Dev |