git.ipfire.org Git - ipfire-3.x.git/commit

]> git.ipfire.org Git - ipfire-3.x.git/commit

author	Michael Tremer <michael.tremer@ipfire.org>
	Fri, 24 Mar 2023 10:55:33 +0000 (10:55 +0000)
committer	Michael Tremer <michael.tremer@ipfire.org>
	Fri, 24 Mar 2023 10:55:33 +0000 (10:55 +0000)
commit	48c0a8414ddae2a6e443a0fdd253f7944cb6a8a7
tree	77f0e4ed21beb30db53ec2783103f22969d5d63e	tree \| snapshot
parent	7ed3355c04f0978ec16f7c83214172add4e8adad	commit \| diff

gcc: Harden this package

This is a major rewrite of this package which should probably be broken
down into several commits, but since GCC takes many hours to build, this
has now been mushed into one to keep us moving forward.

This patch re-introduces a full bootstrap of GCC.

We also build GCC with our own compiler flags and make it pass our
hardening checks which includes patching the build system to build GCC
itself as PIE.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

gcc/gcc.nm		diff \| blob \| blame \| history
gcc/patches/0001-gcc-Build-with-PIE.patch	[new file with mode: 0644]	blob
gcc/patches/0002-libcc1-Export-all-symbols.patch	[new file with mode: 0644]	blob
gcc/patches/a25982ada523689c8745d7fb4b1b93c8f5dab2e7.patch	[new file with mode: 0644]	blob

IPFire 3.x development tree

RSS Atom