From owner-freebsd-security@FreeBSD.ORG  Wed Oct 26 05:18:48 2005
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
X-Original-To: freebsd-security@FreeBSD.org
Delivered-To: freebsd-security@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3A0E816A41F;
	Wed, 26 Oct 2005 05:18:48 +0000 (GMT) (envelope-from imp@bsdimp.com)
Received: from harmony.bsdimp.com (vc4-2-0-87.dsl.netrack.net [199.45.160.85])
	by mx1.FreeBSD.org (Postfix) with ESMTP id CBDB343D45;
	Wed, 26 Oct 2005 05:18:47 +0000 (GMT) (envelope-from imp@bsdimp.com)
Received: from localhost (localhost.village.org [127.0.0.1] (may be forged))
	by harmony.bsdimp.com (8.13.3/8.13.3) with ESMTP id j9Q5HWa5017086;
	Tue, 25 Oct 2005 23:17:33 -0600 (MDT) (envelope-from imp@bsdimp.com)
Date: Tue, 25 Oct 2005 23:17:29 -0600 (MDT)
Message-Id: <20051025.231729.26928360.imp@bsdimp.com>
To: cracauer@cons.org
From: "M. Warner Losh" <imp@bsdimp.com>
In-Reply-To: <20051024064605.A44523@cons.org>
References: <20051023232935.GC602@dragon.NUXI.org>
	<20051024080811.GF39882@cirb503493.alcatel.com.au>
	<20051024064605.A44523@cons.org>
X-Mailer: Mew version 3.3 on Emacs 21.3 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0
	(harmony.bsdimp.com [127.0.0.1]);
	Tue, 25 Oct 2005 23:17:33 -0600 (MDT)
X-Mailman-Approved-At: Wed, 26 Oct 2005 17:14:45 +0000
Cc: PeterJeremy@optushome.com.au, delphij@delphij.net, developers@FreeBSD.org,
	obrien@FreeBSD.org, freebsd-security@FreeBSD.org
Subject: Re: Is it feasible to cross-build compat5x binary?
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Oct 2005 05:18:48 -0000

In message: <20051024064605.A44523@cons.org>
            Martin Cracauer <cracauer@cons.org> writes:
: Peter Jeremy wrote on Mon, Oct 24, 2005 at 06:08:11PM +1000: 
: > On Sun, 2005-Oct-23 16:29:35 -0700, David O'Brien wrote:
: > >We should no trust cross built libraries for this purpose at this time.
: > >We really don't know how identical the results will be to being natively
: > >built.
: > 
: > At some stage, we need to validate our cross-build chain with cmp(1).
: 
: ELF object files are timestamped.  But there's some elf-cmp out there.

Elf .o's are timestampped, but Elf executables are 100% reproducible,
except when people go out of their way to not make them so.  Like
adding the date or person builder.

Warner