From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Mzakq-000582-Ru for garchives@archives.gentoo.org; Sun, 18 Oct 2009 18:45:20 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 0FB27E0509; Sun, 18 Oct 2009 18:45:19 +0000 (UTC) Received: from mail2.viabit.com (mail2.viabit.com [65.246.80.16]) by pigeon.gentoo.org (Postfix) with ESMTP id E8F5AE0509 for ; Sun, 18 Oct 2009 18:45:18 +0000 (UTC) Received: from [192.168.1.100] (c-68-49-223-78.hsd1.md.comcast.net [68.49.223.78]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail2.viabit.com (Postfix) with ESMTPSA id 8CAEAD8D93 for ; Sun, 18 Oct 2009 14:45:18 -0400 (EDT) Message-ID: <4ADB623D.4040204@orlitzky.com> Date: Sun, 18 Oct 2009 14:45:17 -0400 From: Michael Orlitzky User-Agent: Thunderbird 2.0.0.23 (X11/20091004) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 To: gentoo-hardened@lists.gentoo.org Subject: Re: [gentoo-hardened] gcc-4.3.4 stabilized for a hardened profile? References: <49bf44f10910180842t3d34efd5h20af2a937d75bb1c@mail.gmail.com> In-Reply-To: <49bf44f10910180842t3d34efd5h20af2a937d75bb1c@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Archives-Salt: 18b1c393-2ae3-4fe3-8c67-4a55405ac218 X-Archives-Hash: 0b478f182a07f29475fd71c593e05d0d Grant wrote: > I've been stuck on gcc-3.4.6 on my hardened profile system (currently: > hardened/linux/amd64/10.0) for a very long time. Now it looks like > gcc-4.3.4 has been stabilized for hardened profiles. Has anyone > tested it? This system is critical for me, so I've got to be careful. > > - Grant > A lot of us have been testing the new GCC for a while now using the hardened-development overlay. It's as stable as 3.4.x was in my experience. About a year and a half ago, I reformatted a laptop and started from scratch using gcc-4.x from the overlay, because what the hell. Many issues from the gcc-3.x era actually cleared up with the new toolchain. Once I convinced myself that things were working correctly, I began to migrate "real" systems to the development GCC one at a time. All of my personal machines are using gcc-4.x, and things work much better on the desktop than they did with gcc-3.x. Many of our servers have also been migrated: web, database, dns, mail, monitoring, firewall, etc. all work fine. I have noticed absolutely no difference (either positive or negative) on those machines. In short, switching your default compiler with gcc-config isn't going to change anything. Test any new packages/upgrades just as you would have with gcc-3.x.