Author: robert Date: 2009-02-21 19:41:19 -0700 (Sat, 21 Feb 2009) New Revision: 1485
Modified: branches/Onward/downloads/packages.txt branches/Onward/downloads/patches.txt branches/Onward/temporary_system/glibc.txt Log: Bump to Glibc-2.9. Add missing glibc patch urls. Removed Glibc undersized DNS responses patch, because it seems to be fixed upstream (in a different way). Modified: branches/Onward/downloads/packages.txt =================================================================== --- branches/Onward/downloads/packages.txt 2009-02-22 02:09:47 UTC (rev 1484) +++ branches/Onward/downloads/packages.txt 2009-02-22 02:41:19 UTC (rev 1485) @@ -51,9 +51,9 @@ # http://ftp.gnu.org/gnu/gettext/gettext-0.17.tar.gz.sig http://ftp.gnu.org/gnu/gettext/gettext-0.17.tar.gz -# Glibc-2.8 snapshot: +# Glibc-2.9 snapshot: # You may want to follow this symlink, and get the real file name. -ftp://sources.redhat.com/pub/glibc/snapshots/glibc-2.8-latest.tar.bz2 +ftp://sources.redhat.com/pub/glibc/snapshots/glibc-2.9-latest.tar.bz2 # Grep: # This CVS version of Grep is a bug fix release, and eliminates the need for Modified: branches/Onward/downloads/patches.txt =================================================================== --- branches/Onward/downloads/patches.txt 2009-02-22 02:09:47 UTC (rev 1484) +++ branches/Onward/downloads/patches.txt 2009-02-22 02:41:19 UTC (rev 1485) @@ -32,18 +32,21 @@ # Glibc issetugid() patch: http://www.linuxfromscratch.org/patches/downloads/glibc/glibc-2.5.1-issetugid-1.patch +# Glibc localedef trampoline patch: +http://www.linuxfromscratch.org/patches/downloads/glibc/glibc-2.5.1-localedef_trampoline-1.patch + # Glibc random mk*temp() patch: http://www.linuxfromscratch.org/~robert/new/patches/glibc-2.8-mktemp_urandom.diff +# Glibc PT_PaX patch: +http://www.linuxfromscratch.org/patches/downloads/glibc/glibc-2.5.1-pt_pax-1.patch + # Glibc better res_randomid() patch: -http://www.linuxfromscratch.org/~robert/new/patches/glibc-2.8-res_randomid.diff +http://www.linuxfromscratch.org/~robert/new/patches/glibc-2.9-res_randomid.diff # Glibc resolv_response_length patch: http://www.linuxfromscratch.org/~robert/new/patches/glibc-2.8-resolv_response_length.diff -# Glibc undersized DNS responses patch: -http://www.linuxfromscratch.org/~robert/new/patches/glibc-2.8-resolv_QFIXEDSZ_underfills.diff - # Glibc sanitize environment patch: http://www.linuxfromscratch.org/~robert/new/patches/glibc-2.8-sanitize_env.diff Modified: branches/Onward/temporary_system/glibc.txt =================================================================== --- branches/Onward/temporary_system/glibc.txt 2009-02-22 02:09:47 UTC (rev 1484) +++ branches/Onward/temporary_system/glibc.txt 2009-02-22 02:41:19 UTC (rev 1485) @@ -71,13 +71,8 @@ # http://www.openbsd.org/advisories/res_random.txt # This patch uses /dev/urandom instead: -patch -p1 -i ../glibc-2.8-res_randomid.diff && +patch -p1 -i ../glibc-2.9-res_randomid.diff && -# This patch adds more checking to the size of DNS responses, so we avoid -# reading passed the end of an undersized message: - -patch -p1 -i ../glibc-2.8-resolv_QFIXEDSZ_underfills.diff && - # This patch does a check on the buffer size of res_* functions: patch -p1 -i ../glibc-2.8-resolv_response_length.diff && @@ -105,13 +100,21 @@ # --sbindir=/tools/bin does not work... anyone want to fix this? We don't need # Glibc's sbin programs, but still. +# --enable-kernel=2.6.0 is important for test suites. For unknown reasons, +# setting this higher than 2.6.0 can cause test suites to fail. This option +# causes code to be removed from Glibc when kernel functions are expected to +# exist to replace Glibc code. This improves performance. Even when this +# option is set to 2.6.0, the kernel system call will always be attempted +# first, before using the Glibc library version. Using 2.6.0 is more robust +# and provides Glibc with a backup that is known to be 100% compatible. + # --enable-stackguard-randomization could be added here, but this is primarily # for attacks by local users, and we shouldn't have those in the rebooted # system. Adding this will empty the /dev/random entropy pool (via # /dev/urandom), unless the system is running a Random Number Gathering Daemon # (rngd). This version of Glibc uses high precision timing with SSP, so the # canary value changes at run-time. This is not as good as /dev/urandom, but -# it's better than nothing and has very good performance. +# it's better than nothing and has very good performance. FIXME - Use erandom. mkdir -v obj/ && cd obj/ && -- http://linuxfromscratch.org/mailman/listinfo/hlfs-book FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
