| 1 |
hi Azarah, sorry for your trouble in real life ;-( |
| 2 |
|
| 3 |
> > http://bugs.gentoo.org/show_bug.cgi?id=25299 containing a gcc ebuild |
| 4 |
> > diff which can do it right if bootstrap.sh on stage1 installations goes |
| 5 |
> > for building gcc directly after glibc (seemant told me this is a simple |
| 6 |
> > change). |
| 7 |
or if there are problems with nptl, we shall go this way: |
| 8 |
gcc building - glibc building - gcc building again |
| 9 |
time wasting and intensive, but i cannot think of any safe path |
| 10 |
otherwise. |
| 11 |
|
| 12 |
> > |
| 13 |
> |
| 14 |
> Well, its not entirely this simple. Especially with NPTL and Co that |
| 15 |
> keeps changing and adds gcc/binutils support, you sorda need to build |
| 16 |
> glibc after those, especially if the stuff in the stage1 is old ... |
| 17 |
as i understood, stage1 is only containing a gcc, glibc and binutils and |
| 18 |
pointing to bootstrap.sh for building all from scratch, right? |
| 19 |
|
| 20 |
> Given, but I still do not know if doing things with hardened enabled |
| 21 |
> only is a wise path. Tending to do things like this usually imply a |
| 22 |
yes, we will not make it dependent on hardened-gcc any more but only on |
| 23 |
the glibc having guard and no binary on the system needing libgcc |
| 24 |
symbols. |
| 25 |
|
| 26 |
> decrease in transparency. Look at NPTL - you only need to remerge |
| 27 |
> glibc. With what you told about the issues with the symbols, it might |
| 28 |
> get a marshy if the user decides to switch in the middle ... |
| 29 |
understood :-) |
| 30 |
|
| 31 |
> > Please approve and submit my changes in |
| 32 |
> > http://dev.gentoo.org/~pappy/gentoo-x86/sys-devel/gcc/ to the |
| 33 |
> > appropriate ebuilds of gcc and report back any improvements you would |
| 34 |
> > like to see in the progress of this movement. |
| 35 |
> > |
| 36 |
> |
| 37 |
> Please feel free to add an initial masked version of 3.2.3 for testing. |
| 38 |
|
| 39 |
i will add gcc-3.2.3-r3 with ~x86 keyword to get people into updating |
| 40 |
their machines. |
| 41 |
When this proves okay, i will mark it stable in the next days to get |
| 42 |
the normal people into updating it also. |
| 43 |
|
| 44 |
Danke, |
| 45 |
|
| 46 |
Alexander |
| 47 |
-- |
| 48 |
Alexander Gabert <pappy@g.o> |
| 49 |
http://www.gentoo.org/proj/en/hardened |
| 50 |
|
| 51 |
|
| 52 |
-- |
| 53 |
gentoo-hardened@g.o mailing list |
Archives