Bug#859352: boinc shouldn't disable PIE
Adrian Bunk
bunk at debian.org
Sun Apr 2 18:22:38 UTC 2017
Source: boinc
Version: 7.6.33+dfsg-10
Severity: normal
Tags: patch
With gcc in stretch defaulting to PIE, hardening=+all,-pie changed
semantics from "enable hardening but not PIE" to "enable all hardening
and explicitely disable the default PIE".
The latter is usually not intended.
The -pie in hardening flags was in some cases required in pre-stretch
releases to avoid build failures caused by (incorrectly) passing -fPIE
to the compiler when building shared libraries or plugins.
This problem does no longer exist.
Please consider applying the following change:
--- debian/rules.old 2017-03-20 09:37:18.000000000 +0000
+++ debian/rules 2017-03-20 09:37:25.000000000 +0000
@@ -21,7 +21,7 @@
DEB_BUILD_GNU_TYPE ?= $(shell dpkg-architecture -qDEB_BUILD_GNU_TYPE)
# Set default flags with dpkg-buildflags
-export DEB_BUILD_MAINT_OPTIONS = hardening=+all,-pie
+export DEB_BUILD_MAINT_OPTIONS = hardening=+all
ifeq ($(DEB_BUILD_GNU_TYPE), $(DEB_HOST_GNU_TYPE))
TYPE_FLAGS = --build $(DEB_HOST_GNU_TYPE)
More information about the pkg-boinc-devel
mailing list