| 1 |
On Monday 08 November 2010 13.06.49 klondike wrote: |
| 2 |
> El 08/11/10 12:51, Ed W escribió: |
| 3 |
> > Hi, compiling kernel on my hardened machine has long produced a warning: |
| 4 |
> > |
| 5 |
> > /usr/src/linux-2.6.35.8-vs2.3.0.36.33-pax-test26/arch/x86/Makefile:81: |
| 6 |
> > stack protector enabled but no compiler support |
| 7 |
> > |
| 8 |
> > However, I would have expected this to go away now that I have |
| 9 |
> > upgraded to gcc-4.4.4? |
| 10 |
> > |
| 11 |
> > # gcc-config -l |
| 12 |
> > |
| 13 |
> > [1] x86_64-pc-linux-gnu-4.4.4 * |
| 14 |
> > [2] x86_64-pc-linux-gnu-4.4.4-hardenednopie |
| 15 |
> > |
| 16 |
> > ... |
| 17 |
> > |
| 18 |
> > Any thoughts on what is going awry? |
| 19 |
> |
| 20 |
> The SSP detection script in the kernel is disabled as it gave problems, |
| 21 |
> if I recall correctly. Maybe blueness can provide a better insight. |
| 22 |
It is a error in the kernels SSP check for it don't support to compile with |
| 23 |
-fPIE and it s fixed in .36 or some of the gentoo-hardened patchset. |
| 24 |
/Magnus |
Archives