From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 897A8139083 for ; Tue, 5 Dec 2017 22:49:00 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id DEC73E10CD; Tue, 5 Dec 2017 22:48:55 +0000 (UTC) Received: from pmta21.teksavvy.com (pmta21.teksavvy.com [76.10.157.36]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 8D4BBE108F for ; Tue, 5 Dec 2017 22:48:55 +0000 (UTC) X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A2EZDQDzICda/6Wi+M5dHAEBAQQBAQoBA?= =?us-ascii?q?YM9gVQniQ2GB44HAYIwAZhiHYUiBIVLRBQBAQEBAQEBAQEDaCiFZBxfEyEFJSQ?= =?us-ascii?q?TiiOsM4sFhiiBAoofg1yCMgWKOYhhj1wCgjmSS4wHGodElkGBSjYjgU18CIJjg?= =?us-ascii?q?gJQHIIFIzeKIwEBAQ?= X-IPAS-Result: =?us-ascii?q?A2EZDQDzICda/6Wi+M5dHAEBAQQBAQoBAYM9gVQniQ2GB44?= =?us-ascii?q?HAYIwAZhiHYUiBIVLRBQBAQEBAQEBAQEDaCiFZBxfEyEFJSQTiiOsM4sFhiiBA?= =?us-ascii?q?oofg1yCMgWKOYhhj1wCgjmSS4wHGodElkGBSjYjgU18CIJjggJQHIIFIzeKIwE?= =?us-ascii?q?BAQ?= X-IronPort-AV: E=Sophos;i="5.45,365,1508817600"; d="scan'208";a="10852194" Received: from 206-248-162-165.dsl.teksavvy.com (HELO waltdnes.org) ([206.248.162.165]) by smtp.teksavvy.com with SMTP; 05 Dec 2017 17:48:53 -0500 Received: by waltdnes.org (sSMTP sendmail emulation); Tue, 05 Dec 2017 17:48:52 -0500 From: "Walter Dnes" Date: Tue, 5 Dec 2017 17:48:52 -0500 To: Gentoo Users List Subject: [gentoo-user] If I avaoided pic/PIC/pie; would it help/hurt? Message-ID: <20171205224852.GA19788@waltdnes.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.7.2 (2016-11-26) X-Archives-Salt: 0943f7a3-3c85-4ffa-a71e-52574802cf98 X-Archives-Hash: 9fbba6dd2afa512ce10595c505f4dbee I'm looking at going with... CFLAGS="-O2 -march=native -mfpmath=sse -fomit-frame-pointer -pipe -fno-pic -fno-PIC -fno-pie -fno-unwind-tables -fno-asynchronous-unwind-tables" CXXFLAGS="${CFLAGS}" ...and with -pic in USE. This is the mirror image of the defaults. Any obvious problems, aside from losing a bit of security? In case you're wondering about the "pic" USE flag... [d531][waltdnes][~] grep ":pic " /usr/portage/profiles/use.local.desc app-arch/gzip:pic - disable optimized assembly code that is not PIC friendly app-benchmarks/ramspeed:pic - Force shared libraries to be built as PIC (this is slower) app-emulation/open-vm-tools:pic - Force shared libraries to be built as PIC dev-util/electron:pic - Disable optimized assembly code that is not PIC friendly games-emulation/yabause:pic - disable optimized assembly code that is not PIC friendly games-fps/duke3d:pic - disable optimized assembly code that is not PIC friendly gnome-base/orbit:pic - Force libname-server-2 to be built as PIC; needed on hardened systems media-libs/libpostproc:pic - Force shared libraries to be built as PIC (this is slower). media-libs/mesa:pic - disable optimized assembly code that is not PIC friendly media-libs/x264:pic - disable optimized assembly code that is not PIC friendly media-libs/x265:pic - Disable optimized assembly code that is not PIC friendly media-libs/xvid:pic - disable optimized assembly code that is not PIC friendly media-video/ffmpeg:pic - Force shared libraries to be built as PIC (this is slower) media-video/libav:pic - Force shared libraries to be built as PIC (this is slower). media-video/transcode:pic - disable optimized assembly code that is not PIC friendly www-client/chromium:pic - Disable optimized assembly code that is not PIC friendly -- Walter Dnes I don't run "desktop environments"; I run useful applications