From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Oitnw-0002MB-Nw for garchives@archives.gentoo.org; Tue, 10 Aug 2010 18:44:04 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 092F0E0B13; Tue, 10 Aug 2010 18:44:03 +0000 (UTC) Received: from mail-qw0-f53.google.com (mail-qw0-f53.google.com [209.85.216.53]) by pigeon.gentoo.org (Postfix) with ESMTP id B3F27E0AF0 for ; Tue, 10 Aug 2010 18:42:59 +0000 (UTC) Received: by qwj8 with SMTP id 8so55255qwj.40 for ; Tue, 10 Aug 2010 11:42:30 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type; bh=Ima0yVY5l0R8VAvsQD4G7EVxF+bX+igSjmK1UolY+B8=; b=r4Ic6eGy7UIMZBd4jTupdthS5xTwZkTnEhTtBMbRaIn6SPDObrR4acQcZgYNbj/07X IrqbyF7wHlO/jFv87cf5LFdKfew02qZDC4cDwpv1veIkeK1Bs8Bzz5s2exakcTssBza1 BFZFiHVdLRKjv5Pl//3jrsVJBqwq6o3wPe0As= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=kOgFfdaOthFP84MdtFbpmoIK8irdqmC4UL8HGcXw06MDuWJonnzVyvF0mXeIiXKqLs wIBq+VPsNuf3xCmk5+v4TUhZFwxyYQVDltrh0kV4D397B3FJSK5jTe3VxJt1fw3c8xHQ Z+kcTWli3ggoy7M1Ny5rPQoC/KXj/k9LoM2Yc= Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Received: by 10.229.88.10 with SMTP id y10mr1935887qcl.144.1281465648709; Tue, 10 Aug 2010 11:40:48 -0700 (PDT) Received: by 10.229.6.6 with HTTP; Tue, 10 Aug 2010 11:40:48 -0700 (PDT) In-Reply-To: <20100810084548.GG30937@hrair> References: <20100807163230.GA31575@Mystical> <201008071732.43567.vapier@gentoo.org> <20100808001142.GA7077@Mystical> <201008072216.25549.vapier@gentoo.org> <20100809230323.GA21233@Mystical> <20100810084548.GG30937@hrair> Date: Tue, 10 Aug 2010 20:40:48 +0200 Message-ID: Subject: Re: [gentoo-dev] Re: Add --hash-style=gnu to LDFLAGS From: Francesco R To: gentoo-dev@lists.gentoo.org Content-Type: multipart/alternative; boundary=0016367fa1bac8811a048d7c788e X-Archives-Salt: d307527b-eeaf-4548-8e8f-b7f888d23154 X-Archives-Hash: 92c2bf442e3b8a8367a44951b4a02b32 --0016367fa1bac8811a048d7c788e Content-Type: text/plain; charset=ISO-8859-1 2010/8/10 Brian Harring > On Mon, Aug 09, 2010 at 07:05:11PM -0400, Mike Frysinger wrote: > > On Mon, Aug 9, 2010 at 7:03 PM, Markos Chandras wrote: > > > On Sat, Aug 07, 2010 at 10:16:24PM -0400, Mike Frysinger wrote: > > >> obviously you only mean linux x86/amd64 dev profiles. i dont have a > strong > > >> opinion on that small subset in either direction. > > > > > > So do you agree to make this linker option default to linux x86/amd64 > dev/ > > > profiles? > > > > add them or dont add them, "i dont have a [...] opinion [...] in > > either direction". if put to a vote, i'd abstain. > > Possibly a stupid question, but any reason we've not looked at > injecting something that has lower actual affect but can still be used > for a canary? I'm thinking of --build-id specifically... > > ~brian > I don't know how --hash-style=gnu is used to check for LDFLAGS, so this may be OT. On my personal and _breakable_ desktop I do use LDFLAGS="${LDFLAGS} -Wl,-O1 -Wl,--hash-style=gnu -Wl,--as-needed -Wl,--sort-common -Wl,--build-id" in make.conf. Would this two liners tell me which package who install binaries in /usr/bin does not respect ldflags? # for i in /usr/bin/* ; do eu-unstrip -n -e $i ; done &> build-id.txt # qfile $(grep '0x[0-9]*+0x[0-9]* - ' build-id.txt | awk '{ print $3 }') On a side note, I've noticed that build-id change at every re-compilation of the package, even if nothing changed in the system, since it's supposed to be a "160-bit SHA1 hash on the normative parts of the output contents" should it be the same if the package is compiled on the same system with no changes? Output of the two liners for this system: sys-apps/turbotail (/usr/bin/turbotail) app-arch/rzip (/usr/bin/runzip) app-arch/rzip (/usr/bin/rzip) dev-lang/go (/usr/bin/6a) dev-lang/go (/usr/bin/6cov) dev-lang/go (/usr/bin/6l) dev-lang/go (/usr/bin/6nm) dev-lang/xharbour (/usr/bin/pprun) dev-lang/xharbour (/usr/bin/hbmake) dev-lang/xharbour (/usr/bin/hbdict) dev-lang/xharbour (/usr/bin/xbscript) dev-lang/perl (/usr/bin/perl) dev-lang/perl (/usr/bin/perl5.12.1) dev-lang/R (/usr/bin/Rscript) x11-misc/xcb (/usr/bin/xcb) dev-libs/dietlibc (/usr/bin/dnsd) dev-libs/dietlibc (/usr/bin/elftrunc) app-text/o3read (/usr/bin/utf8tolatin1) app-accessibility/festival (/usr/bin/audsp) app-accessibility/espeak (/usr/bin/espeak) sys-devel/gcc (/usr/bin/x86_64-pc-linux-gnu-gcjh-4.4.4) sys-devel/gcc (/usr/bin/gcjh-4.4.4) sys-devel/llvm-gcc (/usr/bin/llvm-gcov) sys-devel/qconf (/usr/bin/qconf) www-plugins/lightspark (/usr/bin/lightspark) --0016367fa1bac8811a048d7c788e Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable

2010/8/10 Brian Harring <ferringb@gmail.com>
On Mon, Aug 09, 2010 at 07:05:11PM -0400,= Mike Frysinger wrote:
> On Mon, Aug 9, 2010 at 7:03 PM, Markos Chandras wrote:
> > On Sat, Aug 07, 2010 at 10:16:24PM -0400, Mike Frysinger wrote: > >> obviously you only mean linux x86/amd64 dev profiles. =A0i do= nt have a strong
> >> opinion on that small subset in either direction.
> >
> > So do you agree to make this linker option default to linux x86/a= md64 dev/
> > profiles?
>
> add them or dont add them, "i dont have a [...] opinion [...] in<= br> > either direction". =A0if put to a vote, i'd abstain.

Possibly a stupid question, but any reason we've not looked= at
injecting something that has lower actual affect but can still be used
for a canary? =A0I'm thinking of --build-id specifically...

~brian

I don't know how=A0--= hash-style=3Dgnu is used to check for LDFLAGS, so this may be OT.

On my personal and _breakable_ desktop I do use
LDFLAGS=3D"${LDFLAGS} -Wl,-O1 -Wl,--hash-style=3Dgnu -Wl,--as-needed -= Wl,--sort-common -Wl,--build-id"
in make.conf.
Would this two liners tell me which package who install binarie= s in /usr/bin does not respect ldflags?

# for i in /usr/bin/* ; do eu-unstrip -n -e =A0$i ; don= e &> build-id.txt
# qfile $(grep '0x[0-9]*+0x[0-9]* - = ' build-id.txt | awk '{ print $3 }')

On a side note, I've noticed that build-id change at every re-compilati= on of the package, even if nothing changed in the system, since it's su= pposed to be a "160-bit SHA1 hash on the normative parts of the output= contents" should it be the same if the package is compiled on the sam= e system with no changes?

Output of the two liners for this system:
sys-apps/turbotail (/usr/bin/turbotail)
app-arch/rzip= (/usr/bin/runzip)
app-arch/rzip (/usr/bin/rzip)
dev-la= ng/go (/usr/bin/6a)
dev-lang/go (/usr/bin/6cov)
dev-lang/go (/usr/bin/6l)
<= div>dev-lang/go (/usr/bin/6nm)
dev-lang/xharbour (/usr/bin/pprun)=
dev-lang/xharbour (/usr/bin/hbmake)
dev-lang/xharbour = (/usr/bin/hbdict)
dev-lang/xharbour (/usr/bin/xbscript)
dev-lang/perl (/usr/bi= n/perl)
dev-lang/perl (/usr/bin/perl5.12.1)
dev-lang/R = (/usr/bin/Rscript)
x11-misc/xcb (/usr/bin/xcb)
dev-libs= /dietlibc (/usr/bin/dnsd)
dev-libs/dietlibc (/usr/bin/elftrunc)
app-text/o3read (/usr/= bin/utf8tolatin1)
app-accessibility/festival (/usr/bin/audsp)
app-accessibility/espeak (/usr/bin/espeak)
sys-devel/gcc (= /usr/bin/x86_64-pc-linux-gnu-gcjh-4.4.4)
sys-devel/gcc (/usr/bin/gcjh-4.4.4)
sys-devel/llvm-gcc (/usr= /bin/llvm-gcov)
sys-devel/qconf (/usr/bin/qconf)
www-pl= ugins/lightspark (/usr/bin/lightspark)
=A0

--0016367fa1bac8811a048d7c788e--