| 1 |
On 16/05/2010 21:20, Magnus Granberg wrote: |
| 2 |
> Hi |
| 3 |
> |
| 4 |
> Here is the summary of the meeting 2010-05-16 |
| 5 |
> |
| 6 |
> 1,0 Toolchain |
| 7 |
> We have an open bug #318171 for the merge of SSP and GCC>=4.4.3 support. |
| 8 |
> http://bugs.gentoo.org/show_bug.cgi?id=318171 |
| 9 |
> We are waiting for toolchain to approve the changes to toolchain.eclass and glibc that we need. |
| 10 |
> Then we will have GCC 4.4.3 and 4.5.0 with full hardened (PIE/SSP) support in the tree. |
| 11 |
> Grub need to be bumped to the new patchset. |
| 12 |
> We have no time line on it for we are waiting on toolchain. |
| 13 |
> |
| 14 |
|
| 15 |
I see a comment in there: "Cleaned some code and removed SSP support for |
| 16 |
gcc 4.3.X " - I think this might need some watching and perhaps a |
| 17 |
warning here? Sounds like if you now update say a "stable" hardened |
| 18 |
amd64 machine pulling in stable gcc 4.3.X then you might be suddenly |
| 19 |
loosing your hardened compiler? |
| 20 |
|
| 21 |
I understand this is avoided if using your overlay, but it seems like a |
| 22 |
potential pitfall for anyone using the "stable" hardened tree? |
| 23 |
|
| 24 |
Can anyone comment if this is the case or I'm worrying over nothing? |
| 25 |
|
| 26 |
Ta |
| 27 |
|
| 28 |
Ed W |
Archives