> Has anyone checked 32-bit systems? "emerge -pv =sys-devel/gcc-6.3.0"
> on a 2008 Core2duo 32-bit install (my GCC 6.3.0 testbed) shows "(-pie)".
> I read that as the "pie" USE flag being hard-masked out. On my 64-bit
> desktop, "pie" is the default.
Yes, we are aware of this. Unfortunately, d
On Tue, May 09, 2017 at 06:58:42PM -0500, Matthias Maier wrote
> This is a reworded news item (assuming we proceed with the plan to
> default-enable USE=pie). Suggestions for improving the emerge command to
> fix static archives is highly welcomed.
>
> Matthias
>
>
>
> Title: GCC 6 defaults to
On Wed, 10 May 2017 15:29:19 +0200
"Andreas K. Huettel" wrote:
> * generate a new set of profiles 17.0 where it's package.use.forced
> * tell people they may have to rebuild world when they switch
Do we really need to rebuild world?
From what I understand problems arise if we have packages insta
Am Mittwoch, 10. Mai 2017, 13:58:56 CEST schrieb Dirkjan Ochtman:
> On Wed, May 10, 2017 at 11:19 AM, Kristian Fiskerstrand
wrote:
> > Sounds like a reasonable action plan. The consequences of such a change
> > definitely seems to be sufficiently high to merit a proper migration
> > plan which do
Mike Gilbert schrieb:
I disagree. We might want to default the "pie" USE flag differently
depending on the profile, but there's no need to force it.
I think we should force the pie USE flag on/off depending on the profile.
My proposal:
For all profiles except hardened, introduce a pie/nopie va
On Wed, May 10, 2017 at 11:19 AM, Kristian Fiskerstrand wrote:
> Sounds like a reasonable action plan. The consequences of such a change
> definitely seems to be sufficiently high to merit a proper migration
> plan which doesn't seem to have been established at this point. Whether
> that can be ad
On Wed, 10 May 2017 09:23:04 +0200
Alexis Ballier wrote:
> https://bugzilla.redhat.com/show_bug.cgi?id=1238804 (building perl with
> pie seems to make some perl packages fail at runtime)
If that's really the case, can we *not* do this right now?
There's one thing Perl team don't need right now
On 05/10/2017 09:52 AM, Alexis Ballier wrote:
> On Tue, 09 May 2017 18:58:42 -0500
> Matthias Maier wrote:
>
>> This is a reworded news item (assuming we proceed with the plan to
>> default-enable USE=pie). Suggestions for improving the emerge command
>> to fix static archives is highly welcomed.
On Tue, 09 May 2017 18:58:42 -0500
Matthias Maier wrote:
> This is a reworded news item (assuming we proceed with the plan to
> default-enable USE=pie). Suggestions for improving the emerge command
> to fix static archives is highly welcomed.
>
Really, I think the slot to have pie for gcc 6 has
On Tue, 09 May 2017 18:13:06 -0500
Matthias Maier wrote:
> > For a transition we can probably build everything with -fPIE but not
> > link with -pie. If we want that to happen fast, gcc-6 might do that
> > and gcc-7 add the -pie option.
>
> I am not entirely convinced that a transition period
On Wed, 10 May 2017 01:40:36 +0200
"Andreas K. Huettel" wrote:
> Am Mittwoch, 10. Mai 2017, 00:47:30 CEST schrieb Alexis Ballier:
> > On Tue, 9 May 2017 23:18:20 +0200 Hanno Böck
> > wrote:
> > > I really think it's about time that pie becomes the default in
> > > Gentoo.
> >
> > For a tran
On Wed, 10 May 2017 01:44:06 +0200
"Andreas K. Huettel" wrote:
> >
> > While I believe it might be a bit too early to default-enable pie,
> > why not, but the news item *must* contain instructions that people
> > should 'emerge -e world' in order for it to work.
> >
> > Also, I don't believe def
On Wed, May 10, 2017, at 00:07 CDT, Jason Zaman wrote:
> I just want to make sure im understanding this right, only .a files that
> were compiled without -pie will cause issues if you compile the later
> thing that uses the .a with -pie?
> So:
> 1) people on hardened profiles are going to be fin
On Wed, May 10, 2017 at 01:44:06AM +0200, Andreas K. Huettel wrote:
> Am Dienstag, 9. Mai 2017, 22:10:21 CEST schrieb Alexis Ballier:
> >
> > Do you realize that this breaks linking against about any static lib
> > ever built before upgrading ? And I'm not even considering people
> > toggling the
This is a reworded news item (assuming we proceed with the plan to
default-enable USE=pie). Suggestions for improving the emerge command to
fix static archives is highly welcomed.
Matthias
Title: GCC 6 defaults to USE="pie ssp"
Author: Matthias Maier
Content-Type: text/plain
Posted: 2017-05-09
Am Dienstag, 9. Mai 2017, 22:10:21 CEST schrieb Alexis Ballier:
>
> Do you realize that this breaks linking against about any static lib
> ever built before upgrading ? And I'm not even considering people
> toggling the flag.
Toggling the flag is definitely bad. So it should be either on or off.
Am Mittwoch, 10. Mai 2017, 00:47:30 CEST schrieb Alexis Ballier:
> On Tue, 9 May 2017 23:18:20 +0200 Hanno Böck wrote:
> > I really think it's about time that pie becomes the default in Gentoo.
>
> For a transition we can probably build everything with -fPIE but not
> link with -pie. If we want t
> For a transition we can probably build everything with -fPIE but not
> link with -pie. If we want that to happen fast, gcc-6 might do that and
> gcc-7 add the -pie option.
I am not entirely convinced that a transition period of one gcc version
is enough for a smooth transition [1].
It might be
On Tue, 9 May 2017 23:18:20 +0200
Hanno Böck wrote:
> Hi,
>
> On Tue, 09 May 2017 15:55:36 -0500
> Matthias Maier wrote:
>
> > Well, Alexis certainly makes a strong point. Breaking installed
> > static archives by changing a use flag shouldn't be as easy as
> > changing a useflag. So we might
Hi,
On Tue, 09 May 2017 15:55:36 -0500
Matthias Maier wrote:
> Well, Alexis certainly makes a strong point. Breaking installed static
> archives by changing a use flag shouldn't be as easy as changing a
> useflag. So we might simply use.force the pie use flag depending on
> hardened/non-hardened
On Tue, May 9, 2017, at 15:10 CDT, Alexis Ballier wrote:
> There is a *huge* difference between:
> Disable PIE support (NOT FOR GENERAL USE)
> and the negation of:
> pie - Build programs as Position Independent Executables (a security
> hardening technique)
>
> Enabling the latter builds *ev
On Tue, May 9, 2017 at 4:10 PM, Alexis Ballier wrote:
> Also, I don't believe default-pie should even be a useflag. It's always
> been forced-on for hardened and forced-off for non-hardened I think.
> Switching between the two types of profiles has always been difficult
> because of that kind of d
On Tue, 09 May 2017 12:26:48 -0500
Matthias Maier wrote:
> Title: GCC 6 defaults to USE="pie ssp"
> Author: Matthias Maier
> Content-Type: text/plain
> Posted: 2017-05-07
> Revision: 1
> News-Item-Format: 1.0
> Display-If-Installed: >=sys-devel/gcc-6.3.0
> Display-If-Keyword: amd64
>
> In Gento
Title: GCC 6 defaults to USE="pie ssp"
Author: Matthias Maier
Content-Type: text/plain
Posted: 2017-05-07
Revision: 1
News-Item-Format: 1.0
Display-If-Installed: >=sys-devel/gcc-6.3.0
Display-If-Keyword: amd64
In Gentoo, several GCC features can be default disabled or enabled
via use-flags of sy
24 matches
Mail list logo
