Commit graph

26 commits

Author SHA1 Message Date
Franz Pletz
aff1f4ab94 Use general hardening flag toggle lists
The following parameters are now available:

  * hardeningDisable
    To disable specific hardening flags
  * hardeningEnable
    To enable specific hardening flags

Only the cc-wrapper supports this right now, but these may be reused by
other wrappers, builders or setup hooks.

cc-wrapper supports the following flags:

  * fortify
  * stackprotector
  * pie (disabled by default)
  * pic
  * strictoverflow
  * format
  * relro
  * bindnow
2016-03-05 18:55:26 +01:00
Robin Gloster
f6d3b7a2ae switch hardening flags 2016-01-30 16:36:57 +00:00
Franz Pletz
954e9903ad Use a hardened stdenv by default 2016-01-30 16:36:57 +00:00
aszlig
8f793ce6bb
elfutils: Fix header compatibility with glibc 2.21
Regression introduced by df2b9b48cb.

This breaks the build for ltrace and other programs using libelf,
because the header file relies on features from glibc >= 2.22.

Here is an excerpt from the log output of the configure script from
ltrace:

In file included from ...elfutils-0.165/include/gelf.h:32:0,
                 from conftest.c:57:
...elfutils-0.165/include/libelf.h:280:8: error: unknown type name 'Elf32_Chdr'
 extern Elf32_Chdr *elf32_getchdr (Elf_Scn *__scn);
        ^
...elfutils-0.165/include/libelf.h:281:8: error: unknown type name 'Elf64_Chdr'
 extern Elf64_Chdr *elf64_getchdr (Elf_Scn *__scn);
        ^
In file included from conftest.c:57:0:
...elfutils-0.165/include/gelf.h:89:9: error: unknown type name 'Elf64_Chdr'
 typedef Elf64_Chdr GElf_Chdr;
         ^

The issue has been reported in the Debian bug tracker at
https://bugs.debian.org/810885 and I'm using the patch from Mark
Wielaard that has been posted there which adds compatibility for older
glibc versions.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2016-01-16 01:37:37 +01:00
Eelco Dolstra
df2b9b48cb elfutils: 163 -> 165
Also, install programs with the "eu-" prefix to prevent collisions
with binutils (as recommended by upstream), enable xz support, and
enable deterministic archives.
2016-01-15 15:01:13 +01:00
Robert Scott
aefc8b3ddf elfutils: upgrade to 0.163 due to security
... vaguely mentioned by upstream, see e.g. FEDORA-2015-11380.
Close #9084.
2015-08-02 09:36:25 +02:00
Vladimír Čunát
cb83796abb elfutils: update 0.155 -> 0.158 2014-04-20 18:24:11 +02:00
Vladimír Čunát
b4df087f14 elfutils: fix CVE-2014-0172
Patch taken from upstream mailing-list.
2014-04-20 18:24:11 +02:00
Peter Simons
022f120a2c Merge branch 'master' into stdenv-updates. 2013-04-07 23:37:12 +02:00
Peter Simons
c976480a01 elfutils: disable -Werror to fix the build
nm.c: In function 'show_symbols_sysv':
  nm.c:773:27: error: argument to 'sizeof' in 'snprintf' call is the same expression as the destination; did you mean to provide an explicit length? [-Werror=sizeof-pointer-memaccess]
      snprintf (name, sizeof name, "[invalid sh_name %#" PRIx32 "]",
                             ^
  cc1: all warnings being treated as errors
2013-04-07 23:33:20 +02:00
Vladimír Čunát
99da34c204 elfutils: fix build via update 2013-03-17 10:26:44 +01:00
Eelco Dolstra
ab3eeabfed Rename buildNativeInputs -> nativeBuildInputs
Likewise for propagatedBuildNativeInputs, etc.  "buildNativeInputs"
sounds like an imperative rather than a noun phrase.
2012-12-28 19:20:09 +01:00
Eelco Dolstra
5be0a9acd7 Rename hostDrv -> crossDrv, buildDrv -> nativeDrv
This is for consistency with terminology in stdenv (and the terms
"hostDrv" and "buildDrv" are not very intuitive, even if they're
consistent with GNU terminology).
2012-12-28 19:08:19 +01:00
Eelco Dolstra
d4d7931a62 * Cleanup: remove obsolete references to ‘xz’, which is in stdenv now.
svn path=/nixpkgs/branches/stdenv-updates/; revision=31678
2012-01-18 20:53:01 +00:00
Lluís Batlle i Rossell
54aa31cca3 Updating the cross-build of elfutils so the perf for 2.6.37 builds too. (again, nanonote)
svn path=/nixpkgs/trunk/; revision=31378
2012-01-06 21:10:19 +00:00
Lluís Batlle i Rossell
cae619da08 Updating elfutils/perf to cross-build. I tested this for the nanonote.
I add newt, checking that it cross-builds too.

I update perf to have newt support, and now it's also finding python, whatever
that means. I've not tested if 'python' as buildInputs is enough.


svn path=/nixpkgs/trunk/; revision=31353
2012-01-06 16:45:14 +00:00
Yury G. Kudryashov
b00d19d775 elfutils-0.152, pass zlib, bzip2 and xz
svn path=/nixpkgs/trunk/; revision=31323
2012-01-05 23:15:48 +00:00
Peter Simons
961fda939c Fix some broken URLs.
svn path=/nixpkgs/trunk/; revision=23152
2010-08-12 14:56:14 +00:00
Michael Raskin
be3d5d3496 Update elfutils: the old ones are inaccessible, and too old to be found on other mirrors
svn path=/nixpkgs/trunk/; revision=23058
2010-08-09 15:37:14 +00:00
Eelco Dolstra
d869913b27 * RPM updated to 4.7.2.
* nspr updated to 4.8.2.
* nss updated to 3.12.4.
* elfutils updated to 0.143.

svn path=/nixpkgs/trunk/; revision=18867
2009-12-09 22:34:51 +00:00
Eelco Dolstra
6d62e290a0 * elfutils: updated to 0.140. The older versions don't seem to be
needed.

svn path=/nixpkgs/branches/stdenv-updates/; revision=14105
2009-02-17 16:42:51 +00:00
Michael Raskin
f75be37d70 Returned elfutils 0.127 as an option.. I do not see why ltrace fails with 0.131. Will investigate after the merge.
svn path=/nixpkgs/trunk/; revision=10041
2008-01-01 15:44:27 +00:00
Armijn Hemel
dcec5245e0 update to 0.131
svn path=/nixpkgs/trunk/; revision=10040
2008-01-01 14:50:01 +00:00
Eelco Dolstra
2f670d1e06 * Copy elfutils before it disappears again.
svn path=/nixpkgs/trunk/; revision=8703
2007-05-15 13:33:39 +00:00
Eelco Dolstra
80efe94cd0 * Old version disappeared.
svn path=/nixpkgs/trunk/; revision=8701
2007-05-15 13:25:16 +00:00
Eelco Dolstra
505c169238 * Revived RPM. Damn, RPM is nasty to build.
svn path=/nixpkgs/trunk/; revision=8407
2007-03-21 19:25:58 +00:00