why use a hardened toolchain?

Sebastian Faulborn sfaulborn at web.de
Fri Nov 25 11:00:06 PST 2005

Hello everybody!

Can anyone tell me, why HLFS compiles a hardened toolchain?
ie. things like:

sed -e 's/^CFLAGS\t.*$/& -pie -fpie/' \
    -i {progs,tack}/Makefile.in

in chapter 5.

Is there a need to compile SSP and pic/pie in chapter 5?
Wouldn't it be enough to use the toolchain from LFS and just patch
binutils/gcc/glibc so that chapter 6 can be compiled with 
SSP/pic/pie/arc4random/erandom etc?

Thanks a lot!

Sebastian Faulborn

