| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
| |
Funny that no one noticed this for 10 years. :) Thanks to klausman for
clearing this up.
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
For gcc-6 and newer the old logic in the toolchain-glibc eclass:
if use hardened && gcc-specs-pie ; then
append-cppflags -DPIC
else
filter-flags -fPIE
fi
is obsolete. Simply disable the check.
|
| |
|
|
|
|
| |
Signed-off-by: Matthias Maier <tamiko@gentoo.org>
|
|
|
|
|
|
|
|
|
|
| |
-fstack-protector-all (bug #609048).
configure accepts --enable-stack-protector=... option which results
in build system passing appropriate -fstack-protector... option
when possible.
Signed-off-by: Matthias Maier <tamiko@gentoo.org>
|
|
|
|
|
|
|
|
|
|
| |
compatible with GCC >=6.
Newly added tc-enables-pie(), tc-enables-ssp(), tc-enables-ssp-strong()
and tc-enables-ssp-all() check macros instead of specs.
This solution also works with older GCC and with Clang.
Signed-off-by: Matthias Maier <tamiko@gentoo.org>
|
| |
|
|
|
|
| |
Signed-off-by: Chris Mayo <aklhfex@gmail.com>
|
| |
|
| |
|
| |
|
|
|
|
|
| |
Bump the dependency to go 1.8 and remove the subslot operator since it
doesn't mean anything in DEPEND.
|
|
|
|
| |
invocations to get more useful log.
|
|
|
|
| |
Most people dont display build log to the terminal anymore and having this output in the logs is mandatory for understanding bugs.
|
|
|
|
| |
PREFIX was never defined, making this a no-op.
|
|
|
|
| |
Cleanup obsolete per-category definitions.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
CVE-2017-8421
Prevent memory exhaustion from a corrupt PE binary with an overlarge number of relocs.
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;a=patch;h=39ff1b79f687b65f4144ddb379f22587003443fb
CVE-2017-9038
readelf: Update check for invalid word offsets in ARM unwind information.
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f32ba72991d2406b21ab17edc234a2f3fa7fb23d
CVE-2017-9038
readelf: Update check for invalid word offsets in ARM unwind information.
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f32ba72991d2406b21ab17edc234a2f3fa7fb23d
CVE-2017-9039
readelf: Fix overlarge memory allocation when reading a binary with an excessive number of program headers.
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=82156ab704b08b124d319c0decdbd48b3ca2dac5
CVE-2017-9040, CVE-2017-9042
readelf: fix out of range subtraction, seg fault from a NULL pointer and memory exhaustion, all from parsing corrupt binaries.
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7296a62a2a237f6b1ad8db8c38b090e9f592c8cf
CVE-2017-9041
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=75ec1fdbb797a389e4fe4aaf2e15358a070dcc19
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=c4ab9505b53cdc899506ed421fddb7e1f8faf7a3
[2] https://bugs.gentoo.org/show_bug.cgi?id=618520
[2] https://bugs.gentoo.org/show_bug.cgi?id=618826
Package-Manager: Portage-2.3.6, Repoman-2.3.2
|
| |
|
|
|
|
| |
Signed-off-by: Justin Lecher <jlec@gentoo.org>
|
| |
|
| |
|
|
|
|
|
|
| |
Downloading sources in src_configure is a bad idea.
Ref: http://mesonbuild.com/FAQ.html#does-wrap-download-sources-behind-my-back
|
| |
|
|
|
|
|
|
| |
Add a python_gen_any_dep() function similar to the one in python-any-r1
to facilitate creating any-of dependencies for the new python_setup
syntax.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Provide an alternate mode for python_setup() that behaves similarly to
python-any-r1 eclass. If python_check_deps() function is declared
by the ebuild, the python_setup logic switches to accepting any
implementation that is in PYTHON_COMPAT, installed and satisfies
python_check_deps() independently of USE flags.
This new logic makes it possible to replace some of the existing
REQUIRED_USE constraints for build-time dependencies with more friendly
any-of dependencies. For example, if a package supports both Python 2 &
Python 3 but has a purely Python 2 build-time dependency (e.g. for
building documentation) we had to force Python 2 being enabled via
REQUIRED_USE. Using python_check_deps() with appropriate any-of
dependency, we can use Python 2 for this task without actually forcing
the user to change USE flags or install the package for Python 2.
|
|
|
|
|
|
|
|
|
|
|
|
| |
Inline the logic needed to iterate over implementations directly into
python_setup instead of using python_foreach_impl. This is mostly NFC,
except that we iterate in reverse order now -- that is, we start at
the newest implementation and stop at the first one that works for us.
Previously we (implicitly) started at the oldest implementation, checked
all implementation and used the last one (i.e. the newest) that worked.
More importantly, the new code makes it possible to alter the logic more
easily and avoid relying on implementation of python_foreach_impl().
|
|
|
|
|
|
|
|
| |
Move the PYTHON_COMPAT_OVERRIDE warning from _python_obtain_impls()
to _python_validate_useflags(). Since the latter function is the only
point where the former is called, this is a purely cosmetic change at
the moment. However, it makes it possible to reuse the warning in
additional places without the necessity of setting MULTIBUILD_VARIANTS.
|
|
|
|
|
|
|
|
|
|
|
|
| |
Rewrite the python_*_all() phase running code to reuse python_setup
instead of hacking on top of python_foreach_impl. The resulting code
is a bit simpler but most importantly, it avoids duplication of code
from python-r1 and ensures that distutils-r1 common phases are directly
altered by changes in python_setup.
The code still needs to reimplement some of the internals. However, it
is mostly limited to code specific to distutils-r1, and should be more
maintainable.
|
|
|
|
|
| |
The variable was deprecated and the warning put in place in Dec 2014. It
is no longer used in any ebuild in ::gentoo.
|
|
|
|
|
| |
The function was (verbosely) deprecated in Dec 2014, and banned since
EAPI 6. It is no longer used by any ebuild in ::gentoo.
|
|
|
|
|
|
|
|
|
| |
Make the pattern matching code in _python_impl_matches() more lax,
allowing (accidental) mixing of PYTHON_COMPAT-style values with
EPYTHON-style values. This is trivial to do, and solves the problem
introduced by complexity-by-limitation of other eclasses -- where
patterns for dependency strings are using PYTHON_COMPAT syntax,
and patterns for python_setup are using EPYTHON syntax.
|
|
|
|
| |
Update the missed occurence of pattern matching with the new framework.
|
| |
|
| |
|
|
|
|
|
| |
Needed for in_iuse().
Amends 2340956cb0c43c86e039829712bbed6eae30fb93.
|
|
|
|
|
| |
Recent changes in KDE Applications packaging added a new directory
'cmake_modules' for some type of data content inside po/${lang}/
|
| |
|
|
|
|
|
|
| |
This eclass should not be used as most packages that did
are now broken since ${FILESDIR} could easily be referenced in
pkg_setup.
|
|
|
|
|
|
| |
The channel test inadvertantly tested for success rather than failure
Now the command is always run and the return value is checked.
A reference to PEAR_PN was left over when it should be PEAR_P
|
| |
|
|
|
|
| |
deps
|
|
|
|
| |
Bug: https://bugs.gentoo.org/613668
|
|
|
|
| |
message digest
|
|
|
|
| |
Closes: https://github.com/gentoo/gentoo/pull/4702
|