| 1 |
The new implementation is better than the original by Hirohi, IMHO. |
| 2 |
|
| 3 |
Regards: |
| 4 |
Dw. |
| 5 |
-- |
| 6 |
dr Tóth Attila, Radiológus, 06-20-825-8057, 06-30-5962-962 |
| 7 |
Attila Toth MD, Radiologist, +36-20-825-8057, +36-30-5962-962 |
| 8 |
|
| 9 |
On Pén, Június 26, 2009 03:43, Kerin Millar wrote: |
| 10 |
> 2009/6/26 Ed W <lists@××××××××××.com>: |
| 11 |
> |
| 12 |
> [snip] |
| 13 |
> |
| 14 |
>> However, to be clear I think this achieves a PIE install with no SSP? |
| 15 |
>> Can |
| 16 |
>> anyone confirm this is correct? |
| 17 |
> |
| 18 |
> That's correct. |
| 19 |
> |
| 20 |
>> Seems like SSP is desirable, but not really sure why it's not so |
| 21 |
>> straightforward to turn on? |
| 22 |
> |
| 23 |
> The SSP implementation you are familiar with is largely the work of Dr |
| 24 |
> Hiroaki Etoh of IBM, Japan. As I understand it, the patch simply isn't |
| 25 |
> being maintained any more and, consequently, others (Red Hat?) have |
| 26 |
> picked up the baton and produced an implementation that it somewhat |
| 27 |
> different. By mere virtue of being different, there are unique |
| 28 |
> issues/bugs to be resolved before it can be enabled by default in the |
| 29 |
> gcc-4.x hardened specs without causing undue breakage and inducing |
| 30 |
> headaches throughout the hardened populace. |
| 31 |
> |
| 32 |
> Cheers, |
| 33 |
> |
| 34 |
> --Kerin |
| 35 |
> |
Archives