conf/145261: 8.0-R source doesn't respect WITHOUT_TOOLCHAIN as
src.conf(5) says
Gergely Czuczy
gergely.czuczy at harmless.hu
Thu Apr 1 09:40:01 UTC 2010
>Number: 145261
>Category: conf
>Synopsis: 8.0-R source doesn't respect WITHOUT_TOOLCHAIN as src.conf(5) says
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Thu Apr 01 09:40:00 UTC 2010
>Closed-Date:
>Last-Modified:
>Originator: Gergely Czuczy
>Release: 8.0-RELEASE-p2
>Organization:
Harmless Digital Bt
>Environment:
FreeBSD zfsbackup.mediatech.local 8.0-RELEASE-p2 FreeBSD 8.0-RELEASE-p2 #0: Thu Mar 18 17:19:59 UTC 2010 toor at zfsbackup.mediatech.local:/usr/obj/usr/src/sys/ZFSBACKUP i386
>Description:
setting WITHOUT_TOOLCHAIN in src.conf doesn't have the documented effect that sr.conf(5) says.
Basically only gdb gets ripped, and everything else, along with the compilers, headers and such things gets installed.
This knob should remove the toolchain from the installed world, and it's kind of important for securing jails and systems on a corporate platform.
This used to work back when I was doing this with 6, but i experienced it not working on 8. Can't test right now with 7.
>How-To-Repeat:
echo WITHOUT_TOOLCHAIN= >> /etc/src.conf
mkdir /tgt
make -C /usr/src installworld DESTDIR=/tgt/
gcc and the whole toolchain will be available, except gdb.
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list