From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1MJpB3-0000eD-JR for garchives@archives.gentoo.org; Thu, 25 Jun 2009 13:39:45 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 732D3E040F; Thu, 25 Jun 2009 13:39:44 +0000 (UTC) Received: from mail-ew0-f211.google.com (mail-ew0-f211.google.com [209.85.219.211]) by pigeon.gentoo.org (Postfix) with ESMTP id 2FCEAE040F for ; Thu, 25 Jun 2009 13:39:44 +0000 (UTC) Received: by ewy7 with SMTP id 7so2050140ewy.34 for ; Thu, 25 Jun 2009 06:39:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=kZjWp1h2omR4a+xmhSGnM0TTOyF6FW6FWH2Vyki0yQ0=; b=Zcf0VR1aHmdNGsFenlBiSJd8SWqFbp6t4lYoLxIWkymCh8tEokWUn6wIbBs4uL5diC NxYFlzr0t46UGoXyAquVCPhGMN/16DhskZzf79W/FVnr5mtIxLr4jBnxadA/fHVGz4Zu g3jwPpxudSuLmbiZuPs/1YqZooDRQ8LTyavO0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=ADKGq/YZvRiJn1qnMnM73zjkS0RYSMYW7rPngQojDLtDeHhxJJQzgSQD528kVp5tWB 88/m0Tg+LAFPQI7R/g6RaKJvo8WDSunl012d72iRoZoSiCmdLiq0xT2Bg/QUS3KFjhx4 bDGookKdr1ZuKaORBmQk9JLpToAE/Dkx6COSM= Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 Received: by 10.210.141.19 with SMTP id o19mr2857079ebd.54.1245937182655; Thu, 25 Jun 2009 06:39:42 -0700 (PDT) In-Reply-To: <200906251518.28243.meyerm@fs.tum.de> References: <4A43594C.5040201@wildgooses.com> <7748d30c0906250419p6da46abale478c544d96d7aed@mail.gmail.com> <200906251518.28243.meyerm@fs.tum.de> Date: Thu, 25 Jun 2009 14:39:42 +0100 Message-ID: <279fbba40906250639g528656e7yc86bcae0ae9f501@mail.gmail.com> Subject: Re: [gentoo-hardened] GCC4 (again...) From: Kerin Millar To: gentoo-hardened@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: f279247e-815a-4da9-bc68-71b40d831a8b X-Archives-Hash: ffdab122e3310f8af6984246196e34e5 2009/6/25 Marcel Meyer : > Hi, > > Am Donnerstag, 25. Juni 2009 schrieb Marcel Kummerow: >> 2009/6/25 Ed W >> >> > [..] hardened GCC4 >> > >> > Anyone able to provide such a summary please? >> >> http://forums.gentoo.org/viewtopic-t-705939.html > > what happens in the future when this overlay will no longer be provided? If you're just looking for PIE support, you don't need any overlays. Just unmask gcc-4.3.3-r2: echo "=sys-devel/gcc-4.3.3-r2" >> /etc/portage/package.keywords Upon installing/upgrading the ebuild in question, you'll find that a set of hardened specs are provided: [1] x86_64-pc-linux-gnu-4.3.3 * [2] x86_64-pc-linux-gnu-4.3.3-hardenednopie [3] x86_64-pc-linux-gnu-4.3.3-vanilla If you're installing a system from scratch then, in my opinion, it is a lot easier to rebuild a system seeded with a recent (vanilla) autobuild stage than it is to use the hardened stages (which are still based on gcc-3.4.6-r2 and usually stale in other respects). Cheers, --Kerin