Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[SOLVED]just for curiosity
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Gentoo Chat
View previous topic :: View next topic  
Author Message
klas
n00b
n00b


Joined: 30 Aug 2017
Posts: 66
Location: Bradford, UK

PostPosted: Sat Dec 02, 2017 11:20 pm    Post subject: [SOLVED]just for curiosity Reply with quote

Hi
From eselect profile command , what does 17.0 means here?
What is the difference between
Code:
   [6]   default/linux/amd64/13.0/desktop/plasma *
and
Code:
 [18]  default/linux/amd64/17.0/desktop/plasma

Which one is better ?
Code:

jules@grodos ~ $ eselect profile list
Available profile symlink targets:
  [1]   default/linux/amd64/13.0
  [2]   default/linux/amd64/13.0/selinux
  [3]   default/linux/amd64/13.0/desktop
  [4]   default/linux/amd64/13.0/desktop/gnome
  [5]   default/linux/amd64/13.0/desktop/gnome/systemd
  [6]   default/linux/amd64/13.0/desktop/plasma *
  [7]   default/linux/amd64/13.0/desktop/plasma/systemd
  [8]   default/linux/amd64/13.0/developer
  [9]   default/linux/amd64/13.0/no-multilib
  [10]  default/linux/amd64/13.0/systemd
  [11]  default/linux/amd64/13.0/x32
  [12]  default/linux/amd64/17.0
  [13]  default/linux/amd64/17.0/selinux
  [14]  default/linux/amd64/17.0/hardened
  [15]  default/linux/amd64/17.0/desktop
  [16]  default/linux/amd64/17.0/desktop/gnome
  [17]  default/linux/amd64/17.0/desktop/gnome/systemd
  [18]  default/linux/amd64/17.0/desktop/plasma
  [19]  default/linux/amd64/17.0/desktop/plasma/systemd
  [20]  default/linux/amd64/17.0/developer
  [21]  default/linux/amd64/17.0/no-multilib
  [22]  default/linux/amd64/17.0/systemd
  [23]  default/linux/amd64/17.0/x32
  [24]  hardened/linux/amd64
  [25]  hardened/linux/amd64/selinux
  [26]  hardened/linux/amd64/no-multilib
  [27]  hardened/linux/amd64/no-multilib/selinux
  [28]  hardened/linux/amd64/x32
  [29]  hardened/linux/musl/amd64
  [30]  hardened/linux/musl/amd64/x32
  [31]  default/linux/uclibc/amd64
  [32]  hardened/linux/uclibc/amd64



Kind Regards
_________________
... brute force works in coding ...


Last edited by klas on Sun Dec 17, 2017 5:38 pm; edited 1 time in total
Back to top
View user's profile Send private message
asturm
Developer
Developer


Joined: 05 Apr 2007
Posts: 5577
Location: Austria

PostPosted: Sat Dec 02, 2017 11:24 pm    Post subject: Reply with quote

13.0 is old, 17.0 is new, there is a news item in portage as well as multiple threads in https://forums.gentoo.org/viewforum-f-8.html already.
_________________
backend.cpp:92:2: warning: #warning TODO - this error message is about as useful as a cooling unit in the arctic
Back to top
View user's profile Send private message
brendlefly62
Tux's lil' helper
Tux's lil' helper


Joined: 19 Dec 2009
Posts: 86

PostPosted: Sat Dec 02, 2017 11:34 pm    Post subject: Reply with quote

The news item is entitled "2017-11-30-new-17-profiles," and it says the 17 profiles depend on GCC 6, which produces position independent executables by default. Thus the news item includes the several-step procedure for the upgrade. The news item also requests:
Quote:
"please migrate away from the 13.0 profiles within the six weeks after GCC 6.4.0 has been stabilized on your architecture"
Back to top
View user's profile Send private message
SP2340
n00b
n00b


Joined: 01 Nov 2016
Posts: 50
Location: KeyStoneState

PostPosted: Sun Dec 03, 2017 1:49 am    Post subject: Reply with quote

After having issues with updating my system I looked at the profile list also and seen the same thing and also had the same question as the OP.
But I'm not find any reference in news for this on my system
Code:
# eselect news list
News items:
  [1]      2013-06-01  PBXT now unsupported in MySQL/MariaDB
  [2]      2013-09-27  Separate /usr on Linux requires initramfs
  [3]      2014-06-15  GCC 4.8.3 defaults to -fstack-protector
  [4]      2014-10-26  GCC 4.7 Introduced the New C++11 ABI
  [5]      2015-02-01  ffmpeg/libav conflict management: USE=libav
  [6]      2015-02-02  New portage plug-in sync system
  [7]      2015-04-16  FFmpeg default
  [8]      2015-07-25  Python 3.4 enabled by default
  [9]      2015-08-13  OpenSSH 7.0 disables ssh-dss keys by default
  [10]     2015-10-22  GCC 5 Defaults to the New C++11 ABI
  [11]     2015-12-16  Python ABIFLAGS rebuild needed
  [12]     2016-06-19  L10N USE_EXPAND variable replacing LINGUAS
  [13]     2016-08-11  Grub2 multislot default setting is changing
  [14]     2017-10-13  OpenRC "service" binary removal


I used eix-sync to update my repos just before adding this. What am I missing or am i looking in the wrong place?
_________________
--
Regards
Robert

Smile, it increases your face value.
Back to top
View user's profile Send private message
brendlefly62
Tux's lil' helper
Tux's lil' helper


Joined: 19 Dec 2009
Posts: 86

PostPosted: Sun Dec 03, 2017 5:10 am    Post subject: Reply with quote

SP2340 - what arch is your system? And what is your ver of gcc?
Back to top
View user's profile Send private message
bunder
Bodhisattva
Bodhisattva


Joined: 10 Apr 2004
Posts: 5323

PostPosted: Sun Dec 03, 2017 11:39 am    Post subject: Reply with quote

Code:
Display-If-Installed: >=sys-devel/gcc-6.4.0


Have you installed the new gcc yet?
Back to top
View user's profile Send private message
SP2340
n00b
n00b


Joined: 01 Nov 2016
Posts: 50
Location: KeyStoneState

PostPosted: Sun Dec 03, 2017 2:57 pm    Post subject: Reply with quote

amd64 and gcc is 5.4.0-r3

I haven't been able to update my system because of the python issue that everyone is having presently.
_________________
--
Regards
Robert

Smile, it increases your face value.
Back to top
View user's profile Send private message
brendlefly62
Tux's lil' helper
Tux's lil' helper


Joined: 19 Dec 2009
Posts: 86

PostPosted: Sun Dec 03, 2017 3:23 pm    Post subject: Reply with quote

Ok. Thanks. GCC 6.4.0 is stable for your Arch. Maybe you will get the profile news when you upgrade GCC since you can't use the new profile until you do that upgrade
Back to top
View user's profile Send private message
klas
n00b
n00b


Joined: 30 Aug 2017
Posts: 66
Location: Bradford, UK

PostPosted: Sun Dec 03, 2017 7:38 pm    Post subject: Reply with quote

cool ,
I updated. It s now.
Code:



jules@grodos ~ $ eselect profile list
Available profile symlink targets:
  ...
  [18]  default/linux/amd64/17.0/desktop/plasma *



Is there anything else I should do ? Should I remove the old gcc ? or it s just fine coz my gcc is now
Code:

jules@grodos ~ $ gcc -v
Using built-in specs.
COLLECT_GCC=gcc
COLLECT_LTO_WRAPPER=/usr/libexec/gcc/x86_64-pc-linux-gnu/6.4.0/lto-wrapper
Target: x86_64-pc-linux-gnu
Configured with: /var/tmp/portage/sys-devel/gcc-6.4.0/work/gcc-6.4.0/configure --host=x86_64-pc-linux-gnu --build=x86_64-pc-linux-gnu --prefix=/usr --bindir=/usr/x86_64-pc-linux-gnu/gcc-bin/6.4.0 --includedir=/usr/lib/gcc/x86_64-pc-linux-gnu/6.4.0/include --datadir=/usr/share/gcc-data/x86_64-pc-linux-gnu/6.4.0 --mandir=/usr/share/gcc-data/x86_64-pc-linux-gnu/6.4.0/man --infodir=/usr/share/gcc-data/x86_64-pc-linux-gnu/6.4.0/info --with-gxx-include-dir=/usr/lib/gcc/x86_64-pc-linux-gnu/6.4.0/include/g++-v6 --with-python-dir=/share/gcc-data/x86_64-pc-linux-gnu/6.4.0/python --enable-languages=c,c++,fortran --enable-obsolete --enable-secureplt --disable-werror --with-system-zlib --enable-nls --without-included-gettext --enable-checking=release --with-bugurl=https://bugs.gentoo.org/ --with-pkgversion='Gentoo 6.4.0 p1.1' --disable-esp --enable-libstdcxx-time --enable-shared --enable-threads=posix --enable-__cxa_atexit --enable-clocale=gnu --enable-multilib --with-multilib-list=m32,m64 --disable-altivec --disable-fixed-point --enable-targets=all --disable-libgcj --enable-libgomp --disable-libmudflap --disable-libssp --disable-libcilkrts --disable-libmpx --enable-vtable-verify --enable-libvtv --enable-lto --without-isl --enable-libsanitizer --enable-default-pie --enable-default-ssp
Thread model: posix
gcc version 6.4.0 (Gentoo 6.4.0 p1.1)


Kind Regards,
Klaas
_________________
... brute force works in coding ...
Back to top
View user's profile Send private message
brendlefly62
Tux's lil' helper
Tux's lil' helper


Joined: 19 Dec 2009
Posts: 86

PostPosted: Sun Dec 03, 2017 8:05 pm    Post subject: Reply with quote

Cool. I assume you also got the news item now?

After upgrading GCC, I typically make a deliberate effort to check "gcc-config -l" to ensure the new compiler has been selected. If not, I select it and follow the advice of output to source /etc/profile Then I deliberately run fix_libtoo_files.sh with the old gcc version number (e.g. fix_libtool_files.sh 5.4.0 last time I did it). Then, usually I have found that the old compiler version is removed when I run emerge -av --depclean as part of my routine update sequence (which I know you didn't ask about, but I have listed the basics of, below)

Code:
emerge --sync
emerge -uavDN world                # sometimes add --with-bdeps=y
eselect news read new              # apply adivce
dispatch-conf
show-elogs                        # a script I use to pull and review the latest elogs, so I can apply important advice before proceding
emerge -av --depclean
emerge -av @preserved-rebuild
revdep-rebuild

# as needed, I might add at this point steps to run:
   perl-cleaner --all
   python-updater
   emerge @module-rebuild
   emerge @x11-module-rebuild
   rlpkg -a -r
   rkhunter --propupd

eclean-pkg
eclean-dist -d
localepurge

Cheers
Back to top
View user's profile Send private message
Ant P.
Advocate
Advocate


Joined: 18 Apr 2009
Posts: 4539

PostPosted: Sun Dec 03, 2017 11:03 pm    Post subject: Re: just for curiosity Reply with quote

Nobody's given the boring answer to the original question yet, so for posterity…

"17.0" means year 2017, version 0. Before that we had 13.0 and 10.0, really old ones (if we had any that long ago) weren't year-based. Times change, and sane defaults change with them. The main feature of this one is making GCC use PIE by default, for a bit more security that previously only hardened users had. It may or may not make prelinking slightly more effective. One of either 13.0 or 10.0 changed the default LDFLAGS to "-O1 --as-needed" which went a long way to fixing the nightmare that revdep-rebuild used to be. (Maybe we'll get a 21.0 that'll split use flags by ABI, because right now things like steam/wine are just as much of a headache…)
_________________
*.ebuild // /etc/service/*
Back to top
View user's profile Send private message
klas
n00b
n00b


Joined: 30 Aug 2017
Posts: 66
Location: Bradford, UK

PostPosted: Mon Dec 04, 2017 9:48 pm    Post subject: Reply with quote

Thanks brendlefly62 and Ant P. for the detailed cool answer. I really appreciate 8) :D
by the way , what is rlpkg ? what does it do? and how can I install it ? Excuse my ignorance
_________________
... brute force works in coding ...
Back to top
View user's profile Send private message
brendlefly62
Tux's lil' helper
Tux's lil' helper


Joined: 19 Dec 2009
Posts: 86

PostPosted: Mon Dec 04, 2017 11:30 pm    Post subject: Reply with quote

rlpkg is relevant only if you use SELinux. It will "relabel" your filesystem. I am NOT a SELinux expert, others would probably have better advice if you plan to go there :D
Back to top
View user's profile Send private message
klas
n00b
n00b


Joined: 30 Aug 2017
Posts: 66
Location: Bradford, UK

PostPosted: Tue Dec 05, 2017 7:20 pm    Post subject: Reply with quote

Hi
I am not using hardened sources . Is it possible to switch to hardened and still having my kde desktop ? I heard hardened is for servers ? If it s possible are there any link that point on the steps to do so . Cheers 8)
_________________
... brute force works in coding ...
Back to top
View user's profile Send private message
1clue
Advocate
Advocate


Joined: 05 Feb 2006
Posts: 2042

PostPosted: Tue Dec 05, 2017 7:29 pm    Post subject: Reply with quote

klas wrote:
Hi
I am not using hardened sources . Is it possible to switch to hardened and still having my kde desktop ? I heard hardened is for servers ? If it s possible are there any link that point on the steps to do so . Cheers 8)


Hardened is going away. It's all in the eselect news article.

I followed the instructions in eselect article exactly, my system upgraded without any complications.
Back to top
View user's profile Send private message
brendlefly62
Tux's lil' helper
Tux's lil' helper


Joined: 19 Dec 2009
Posts: 86

PostPosted: Tue Dec 05, 2017 8:21 pm    Post subject: Reply with quote

sys-kernel/hardened-sources is going away {i.e. hardened KERNEL} -- there is a separate news item covering that.

the hardening features supported by Gentoo's hardened PROFILE remain -- as we can see in the original post here, option [14] now provides "hardened" under "default/linux/<arch>/17.0/"; options [24] - [30] & [32] also still provide the traditional "hardened/" alternative to the "default/" profiles. I presume the latter is a temporary arrangement to support legacy hardened users until they can migrate.

additionally, since GCC 6 produces PIC by default, systems based on the 17.0 profiles (which depend on GCC 6) should all be somewhat "harder" than their 13.0-based predecessors

fwiw - from experience, I found that some of the grsec features of the hardened KERNEL always broke desktop, but I somewhat-successfully ran KDE5/Plasma with a pax kernel from hardened-sources on a system built on the legacy "hardened" PROFILE. I used emerge --info with both the "default/.../plasma" and the "hardened" profile to identify global USE differences, and I scoured the per-package USE settings in the plasma profile tree in order to build my own package.use/plasma USE file [I've since learned that you can run emerge -pve @world under each profile to find these per-package differences more easily]. this was a very tedious experiment, and polkitd was never happy with it. presumably you could do something similar using 17.0/hardened and 17.0/desktop profiles -- to find both the global and per-package differences, but I'd recommend just sticking to the 17.0/desktop profiles if you want a desktop that works
Back to top
View user's profile Send private message
klas
n00b
n00b


Joined: 30 Aug 2017
Posts: 66
Location: Bradford, UK

PostPosted: Tue Dec 05, 2017 11:10 pm    Post subject: Reply with quote

Thanks for the advice brendlefly62.
I will stick to my desktop profile from now, no need for hardening things as gcc is upgraded. By the way I do not need much hustle
_________________
... brute force works in coding ...
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Gentoo Chat All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum