This is the mail archive of the crossgcc@sourceware.org mailing list for the crossgcc project.
See the CrossGCC FAQ for lots more information.
Index Nav: | [Date Index] [Subject Index] [Author Index] [Thread Index] | |
---|---|---|
Message Nav: | [Date Prev] [Date Next] | [Thread Prev] [Thread Next] |
Other format: | [Raw text] |
On Thu, Dec 30, 2010 at 4:43 AM, Heiko Zuerker <heiko@zuerker.org> wrote: > Quoting Bryan Hundven <bryanhundven@gmail.com>: > >> On Wed, Dec 29, 2010 at 7:20 PM, Arnaud Lacombe <lacombar@gmail.com> >> wrote: >>> >>> Hi, >>> >>> On Wed, Dec 29, 2010 at 2:15 PM, Heiko Zuerker <heiko@zuerker.org> wrote: >>>> >>>> Hey, >>>> >>>> I'm currently applying additional patches to gcc, in order to create a >>>> hardened toolchain. >>>> >>> I am stupid, dare to explain what the "hardened" concretely mean in >>> this context ? Does it make my toolchain proof to .454 Casull bullet ? >> >> The patches Heiko is referring to come from the gentoo hardened >> project, specifically the hardened toolchain project: >> >> http://www.gentoo.org/proj/en/hardened/hardened-toolchain.xml > > The patches are actually from the Hardened Linux From Scratch, but they do > the same thing basically. > I had some troubles with the Gentoo ones and decided to use the same ones > we've been using for years. Not sure why I was so fixated on the Gentoo > patches for a while.... Ok. That is good to know. It is hard to get documentation on hlfs, as they don't have a published guide, and I always have problems building their book from svn. With that, my two problems with bundling the hlfs patches with crosstool-ng are: 1) validating that the patches are doing what they are supposed to do. 2) if the patches do not work for all architectures and all versions of tools built by crosstool-ng (that require patches), then we have to make a set of special cases where: * if you're using x.x.x version of {gcc,glibc,binutils,etc...}, a normally hidden option would appear to allow you to enable these patches? It just seems to me that if you want a toolchain with these patches and the above scenario from problem [2] is true, the correct choice would be to use the local patch option in crosstool-ng. Put your local patches in version control. A separate repo for the corresponding versions of crosstool-ng and buildroot. Then write a very small wrapper (shell) script that 'checks out' these repositories, puts configuration files in the right spots, and runs crosstool-ng/buildroot to completion of your final product. I do something very similar (minus the buildroot part), and I have found this to be much more flexible then trying to get custom toolchain patches into crosstool-ng, hence keeping crosstool-ng as flexible as possible. It is also easier for me to jump to a newer version of crosstool-ng without too much pain. > -- > > Regards > ÂHeiko Zuerker > Âhttp://www.devil-linux.org > > > ---------------------------------------------------------------- > This message was sent using IMP, the Internet Messaging Program. > > > > -- > For unsubscribe information see http://sourceware.org/lists.html#faq > > -Bryan -- For unsubscribe information see http://sourceware.org/lists.html#faq
Index Nav: | [Date Index] [Subject Index] [Author Index] [Thread Index] | |
---|---|---|
Message Nav: | [Date Prev] [Date Next] | [Thread Prev] [Thread Next] |