On Mon, May 8, 2017 at 19:11:28 CEST, R0b0t1: > [...] > It might not matter for anyone on this list, but it seems like GCC 6 > doesn't support hardening properly. I'm kind of disappointed that they > seem to want to skip it but I can understand the amount of work they > might be avoiding.
Could you please specify what kind of hardening isn’t supported? On
#gentoo-hardened on Freenode IRC I got the information that gcc includes
now patches that had to be patched by Gentoo in earlier versions. Therefore
-no{pie,ssp,ssppie}-subprofiles don’t exist anymore.
checksec’s[1] output didn’t change neither to something less hardened.
[1] =app-admin/checksec-1.7.5::gentoo
Greetings,
Nils
PS: Testing gcc-7.1.0 on ~amd64/hardened right now.
--
GPG fingerprint: '00EF D31F 1B60 D5DB ADB8 31C1 C0EC E696 0E54 475B'
Nils Freydank
signature.asc
Description: This is a digitally signed message part.
