| 1 |
On 03/15/2011 03:20 PM, Grant wrote: |
| 2 |
>>> A dev is asking me to switch to a hardened profile in order to test a |
| 3 |
>>> fix. I'm happy to go through the process, but is there a chance my |
| 4 |
>>> laptop could be unusable after the switch? If that happens I'll be in |
| 5 |
>>> real trouble. Will I be able to switch back to a non-hardened profile |
| 6 |
>>> afterward? I plan to follow this guide: |
| 7 |
>>> |
| 8 |
>>> http://www.gentoo.org/proj/en/hardened/hardenedfaq.xml#hardenedprofile |
| 9 |
>>> |
| 10 |
>>> BTW, are emerge -e world and emerge -e system both necessary? I |
| 11 |
>>> thought emerge -e world would rebuild everything. |
| 12 |
>> |
| 13 |
>> Switching to hardened is safe. The switch back should be, too, although |
| 14 |
>> I haven't personally tried it. (Why would you switch back?) |
| 15 |
> |
| 16 |
> I originally had my laptop on a hardened profile (I think it was a |
| 17 |
> couple laptops back) but there were so many problems I eventually gave |
| 18 |
> up. I remember doing a lot of system reinstalling as I switched |
| 19 |
> profiles around. I don't have time to reinstall my system right now |
| 20 |
> so I'm trying to be sure I can switch to hardened (and from hardened |
| 21 |
> if necessary) without reinstalling. |
| 22 |
|
| 23 |
If you don't run a hardened kernel, "sudo gcc-config 5" (assuming 5 is |
| 24 |
the vanilla gcc on your machine...) will switch you back to the vanilla |
| 25 |
gcc. No need to switch profiles or recompile anything. |
| 26 |
|
| 27 |
|
| 28 |
>> You emerge system first, and then world so that your world is built by a |
| 29 |
>> hardened toolchain. When you compile gcc/glibc with USE=hardened, it |
| 30 |
>> gives them super powers. |
| 31 |
> |
| 32 |
> Would 'emerge gcc glibc && emerge -e world' have the same affect? |
| 33 |
|
| 34 |
There are a couple of other packages you're supposed to re-emerge along |
| 35 |
with gcc and glibc. Binutils was one, but I don't remember the whole |
| 36 |
list. Just suck it up and spend the extra hour to re-emerge system; that |
| 37 |
way, you're sure you haven't missed anything. |
Archives