| 1 |
I was never able to get SBCL to run when compiled with a hardened gcc. There |
| 2 |
are several bugs already filed about it but so far there has been no |
| 3 |
resolution that I know of. It looks like a significant amount of effort was |
| 4 |
put into fixing the build process to work with a PIE-enabled compiler with |
| 5 |
not much luck. |
| 6 |
|
| 7 |
If you are using the latest versions of SBCL you may want to check in with |
| 8 |
one or more of these bugs and report your findings: |
| 9 |
|
| 10 |
https://bugs.gentoo.org/show_bug.cgi?id=380797 |
| 11 |
https://bugs.gentoo.org/show_bug.cgi?id=154887 |
| 12 |
https://bugs.gentoo.org/show_bug.cgi?id=264159 |
| 13 |
|
| 14 |
I had better luck with some of the other Lisp implementations, but |
| 15 |
eventually just switched over to Scheme (mit-scheme and guile, at least, |
| 16 |
work just fine under hardened.) |
| 17 |
|
| 18 |
--Mike |
| 19 |
|
| 20 |
> -----Original Message----- |
| 21 |
> From: napalm@××××××××××.org [mailto:napalm@××××××××××.org] |
| 22 |
> Sent: Monday, April 16, 2012 6:44 PM |
| 23 |
> To: gentoo-hardened@l.g.o |
| 24 |
> Subject: [gentoo-hardened] SBCL working at all with GRsec and PaX? |
| 25 |
> |
| 26 |
> Heya folks, |
| 27 |
> |
| 28 |
> The only version of SBCL I have that actually works is one I compiled |
| 29 |
> under gentoo-sources with vanilla GCC. |
| 30 |
> |
| 31 |
> Has anyone managed to compile even a remotely recent version of SBCL |
| 32 |
> under hardened? |
| 33 |
> |
| 34 |
> I was using an overlay to attempt to get dev-lisp/sbcl-1.0.55-r1 but |
| 35 |
> absolutely no version I've found works (even after changing the one in |
| 36 |
> the overlay because it was using pax-tool or something instead of |
| 37 |
> paxctl to deal with the sbcl kernel-image-thinger). |
| 38 |
> |
| 39 |
> This is the last build log I got out of it: |
| 40 |
> http://bpaste.net/show/7iYaCGigirPZI6UQFrac/ |
| 41 |
> Sorry it's a huge mess but it seems a lot of the dev-lisp packages like |
| 42 |
> to ignore some of the common conventions! |
| 43 |
> |
| 44 |
> It's mainly for a friend who has an account on the machine that I'm |
| 45 |
> trying to get a relatively recent version of SBCL on the go since the |
| 46 |
> machine's a bit of a powerhouse and SBCL can output some blazingly fast |
| 47 |
> programs. |
| 48 |
> |
| 49 |
> Cheers! |
| 50 |
> Nay |
Archives