On Tue, 03 Oct 2006 22:32:52 +0200 Marek Wróbel <[EMAIL PROTECTED]> wrote:
> Chris PeBenito wrote: > > Glibc 2.4 and gcc 4.1 being masked is because the > > hardened compiler is not available in gcc yet. > > Do you know what is current status of hardened GCC 4.* ? > Is there any hope that it will be available in next few months ? Yes. It's work in progress at the moment. We'll post a notice here when it becomes available. > I have tried to search GCC site, but I haven't found anything > interesting. There is no real development roadmap and it is very hard > to find anything about SSP. "Hardened GCC" is a Gentoo thing where we change the normal default settings of the compiler - it has nothing to do with upstream GCC so you won't see any mention of it on the GCC website. > On the other hand, Wikipedia > (http://en.wikipedia.org/wiki/Stack-smashing_protection) and official > ProPolice site > (http://www.research.ibm.com/trl/projects/security/ssp/) say that GCC > 4.1 contains reimplementation of SSP. That is correct. However SSP is not switched on by default in the normal compiler (that is part of what the "Gentoo Hardened GCC" does). > So after hour of reading I am really confused and I would be very > grateful if you could write something about it. To understand the hardened toolchain, read through http://www.gentoo.org/proj/en/hardened/hardened-toolchain.xml -- Kevin F. Quinn
signature.asc
Description: PGP signature
