On 10/25/11 3:58 PM, Anthony G. Basile wrote:
Zorry's the expert here, so I'll ask him to correct me if I miss
anything or get something wrong.
You won't get hardening without those patches. So they need to be there
if the user switches specs from vanilla to hardened.
Thanks, I've filed
On Mon, 24 Oct 2011 13:26:01 +0200
Paweł Hajdan, Jr. phajdan...@gentoo.org wrote:
On 10/24/11 12:58 PM, Anthony G. Basile wrote:
Well not totally on their own, they'd report it and we'd have to see
what we want to do on an ad hoc basis.
Fair enough, that's why I suggested to make the
On Tue, Oct 25, 2011 at 1:59 AM, Ryan Hill dirtye...@gentoo.org wrote:
On Mon, 24 Oct 2011 13:26:01 +0200
Paweł Hajdan, Jr. phajdan...@gentoo.org wrote:
Is it possible to just pass flags to GCC: disable all this hardened
stuff? I know you can disable stack protector, but how about PIE or PIC,
On 10/25/2011 01:59 AM, Ryan Hill wrote:
On Mon, 24 Oct 2011 13:26:01 +0200
Paweł Hajdan, Jr. phajdan...@gentoo.org wrote:
On 10/24/11 12:58 PM, Anthony G. Basile wrote:
Well not totally on their own, they'd report it and we'd have to see
what we want to do on an ad hoc basis.
Fair enough,
Paweł Hajdan, Jr. posted on Mon, 24 Oct 2011 08:58:57 +0200 as excerpted:
Third - can we forcefully disable hardened features in packages that are
not compatible? My assumption is yes, and we should probably print a
warning then.
If a warning is to be printed (and I agree that's a good idea),
