Changeset 706265a
- Timestamp:
- 09/10/2022 06:21:54 PM (19 months ago)
- Branches:
- 11.3, 12.0, 12.1, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, lazarus, lxqt, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, trunk, xry111/llvm18, xry111/soup3, xry111/xf86-video-removal
- Children:
- e51029f
- Parents:
- 7b459c22 (diff), 08c7ccd (diff)
Note: this is a merge changeset, the changes displayed below correspond to the merge itself.
Use the(diff)
links above to see all the changes relative to each parent. - Files:
-
- 3 edited
Legend:
- Unmodified
- Added
- Removed
-
appendices/glossary.xml
r7b459c22 r706265a 137 137 </glossentry> 138 138 139 <glossentry id="gASLR"> 140 <glossterm> 141 <acronym>ASLR</acronym> 142 </glossterm> 143 <glossdef> 144 <para> 145 Address Space Layout Randomization 146 </para> 147 </glossdef> 148 </glossentry> 149 139 150 <glossentry id="gASN"> 140 151 <glossterm> … … 1861 1872 </glossentry> 1862 1873 1874 <glossentry id="gPIE"> 1875 <glossterm> 1876 <acronym>PIE</acronym> 1877 </glossterm> 1878 <glossdef> 1879 <para> 1880 Position Independent Executable 1881 </para> 1882 </glossdef> 1883 </glossentry> 1884 1863 1885 <glossentry id="gPIM"> 1864 1886 <glossterm> … … 2301 2323 </glossentry> 2302 2324 2325 <glossentry id="gSSP"> 2326 <glossterm> 2327 <acronym>SSP</acronym> 2328 </glossterm> 2329 <glossdef> 2330 <para> 2331 Stack Smash Protection 2332 </para> 2333 </glossdef> 2334 </glossentry> 2335 2303 2336 <glossentry id="gSUID"> 2304 2337 <glossterm> -
general/prog/gcc.xml
r7b459c22 r706265a 199 199 --disable-multilib \ 200 200 --with-system-zlib \ 201 --enable-default-pie \ 202 --enable-default-ssp \ 201 203 --enable-languages=c,c++,fortran,go,objc,obj-c++ && 202 204 make</userinput></screen> … … 207 209 the <application>GCC</application> part of the testsuite will run more 208 210 tests than in LFS. Some of those will report FAIL and others XPASS 209 (pass when expected to FAIL). As of gcc-12. 1.0, about 90 FAIL occur211 (pass when expected to FAIL). As of gcc-12.2.0, about 60 FAIL occur 210 212 in the <quote>guality</quote> suite, as well as miscellaneous failures 211 throughout the rest of the test suite. If all the compilers above are 212 built, there will be around 100 unexpected failures out of over 213 523,000 tests. To run the tests, issue: 213 throughout the rest of the test suite, fifteen of which are already 214 present in the GCC tests of LFS. If all the compilers above are 215 built, there will be around 80 unexpected failures out of over 216 482,000 tests. To run the tests, issue: 214 217 </para> 215 218 … … 273 276 <application>zlib</application> instead of the bundled one. 274 277 <application>zlib</application> is used for compressing 275 and uncompressing <application>GCC</application>'s intermediate278 and decompressing <application>GCC</application>'s intermediate 276 279 language in LTO (Link Time Optimization) object files. 280 </para> 281 282 <para> 283 <parameter>--enable-default-pie</parameter>: Makes the 284 <option>-fpie</option> option the default when compiling programs. 285 Together with the <xref linkend="gASLR"/> feature enabled in the kernel, 286 this defeats some kind of attacks based on known memory layouts. 287 </para> 288 289 <para> 290 <parameter>--enable-default-ssp</parameter>: Makes the 291 <option>-fstack-protector-strong</option> option the default when 292 compiling programs. <xref linkend="gSSP"/> is a technique preventing 293 alteration of the program flow by corrupting the parameter stack. 277 294 </para> 278 295 -
general/prog/llvm.xml
r7b459c22 r706265a 152 152 <listitem> 153 153 <para> 154 SSP patch:154 Patch enabling <xref linkend="gSSP"/> by default in clang: 155 155 <ulink url="&patch-root;/clang-&llvm-version;-enable_default_ssp-1.patch"/> 156 156 </para> … … 236 236 before applying -i --> 237 237 <screen><userinput remap="pre">patch -Np2 -d projects/compiler-rt <../compiler-rt-14.0.6-glibc_2_36-1.patch</userinput></screen> 238 239 <para> 240 If you have downloaded <application>clang</application>, 241 apply the following patch to enable <xref linkend="gSSP"/> by default 242 in compiled programs. 243 </para> 244 <!-- need <../<patch> instead of -i because -d changes directory 245 before applying -i --> 238 246 <screen><userinput remap="pre">patch -Np2 -d tools/clang <../clang-&llvm-version;-enable_default_ssp-1.patch</userinput></screen> 239 247 … … 391 399 benchmarks. This option requires additional code that 392 400 is not currently available. 401 </para> 402 403 <para> 404 <parameter>-DCLANG_DEFAULT_PIE_ON_LINUX=ON</parameter>: makes 405 <option>-fpie</option> option the default when compiling programs. 406 Together with the <xref linkend="gASLR"/> feature enabled in the kernel, 407 this defeats some kind of attacks based on known memory layouts. 393 408 </para> 394 409
Note:
See TracChangeset
for help on using the changeset viewer.