Summary: | compile of crt1S.o affected by prior version of hardened-gcc | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Scott Taylor (RETIRED) <swtaylor> |
Component: | New packages | Assignee: | The Gentoo Linux Hardened Team <hardened> |
Status: | RESOLVED CANTFIX | ||
Severity: | normal | CC: | chutz+bugs.gentoo.org |
Priority: | High | ||
Version: | 1.4 | ||
Hardware: | All | ||
OS: | All | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Scott Taylor (RETIRED)
2003-12-18 20:48:31 UTC
Interesting.. anything you want me to do now? i have experienced problems with the glibc provided Scrt1.o regarding ISC bind compiling and similar programs where -pie is used to create binaries that do not contain a main function for whatsoever reason HTH, Alex The gotoff->got fix is in ~arch glibc now so that should nip the ISC bug. Upgrade woes are going to be a problem. Some users are gonna get peeved and just write the solution off as non functional, while others will resort to reporting bugs and using the work around and some will just never figure it out and may leave gentoo all together. 'symbol _start; defaulting' is going to continue to bite us in the butt till new stages are rolled. zhen tells me it might be to late to do anything about it. If that the case then we are stuck with this bug popping up from time to time till 2004.1 this bug describes a problem known as "specs file truncating" by the wrong hardened-gcc shell script editing a specs file it is not known to be able to edit properly. in the future, hardened-gcc will be blocked by profile and forced uninstallation as well as recent gcc versions with hardened support for sys-devel/gcc will be coming soon The whole problem of updating and downgrading hardened-gcc in disjunction with gcc cannot be solved by an uncoupled hardened-gcc shell script without much efforts of detecting current gcc version and specs. maintaining such a logic would be more hassle than it would bring advantages. for this reason solar and i created a native gcc patch which can do the job more appropriately and avoid such "truncated" specs files in the future. Alex |