[Pkg-privacy-commits] [onioncat] 296/340: Set some hardening flags with dpkg_buildflags.
Ximin Luo
infinity0 at moszumanska.debian.org
Sat Aug 22 13:04:50 UTC 2015
This is an automated email from the git hooks/post-receive script.
infinity0 pushed a commit to branch debian
in repository onioncat.
commit c23cdea15f38984f005b00c40afc3518dd4bb24d
Author: intrigeri <intrigeri at boum.org>
Date: Sun Jan 22 15:25:45 2012 +0100
Set some hardening flags with dpkg_buildflags.
According to hardening-check:
- Fortify Source, Read-only relocations and Immediate binding are enabled
- PIE is disabled (expected, unset as it is not compatible with -fPIC)
- Stack protection is disabled (why? seems like CFLAGS are not passed to gcc)
---
debian/control | 3 ++-
debian/rules | 4 +++-
2 files changed, 5 insertions(+), 2 deletions(-)
diff --git a/debian/control b/debian/control
index 90f1961..8e2530c 100644
--- a/debian/control
+++ b/debian/control
@@ -5,7 +5,8 @@ Maintainer: intrigeri <intrigeri at debian.org>
Build-Depends:
autotools-dev,
debhelper (>= 7.0.50~),
- dh-autoreconf
+ dh-autoreconf,
+ dpkg-dev (>= 1.16.1.1~)
Standards-Version: 3.9.2
Homepage: http://www.cypherpunk.at/onioncat
Vcs-Git: git://webmasters.boum.org/onioncat
diff --git a/debian/rules b/debian/rules
index 1b592f2..183563a 100755
--- a/debian/rules
+++ b/debian/rules
@@ -1,6 +1,8 @@
#!/usr/bin/make -f
-export DEB_BUILD_HARDENING=1
+export DEB_BUILD_MAINT_OPTIONS = hardening=+bindnow
+DPKG_EXPORT_BUILDFLAGS = 1
+include /usr/share/dpkg/buildflags.mk
%:
dh $@ --with autoreconf
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-privacy/packages/onioncat.git
More information about the Pkg-privacy-commits
mailing list