Enabling hardened build flags for Perl modules

Moritz Mühlenhoff jmm at inutil.org
Wed Jan 11 17:58:36 UTC 2012


On Mon, Jan 02, 2012 at 12:03:22PM -0800, Russ Allbery wrote:
> > There have been many packages, which converted to compat level 9 (my gut
> > feeling 150-200) already and the first build flags code is available
> > since nearly half a year. It's working find and while there are always
> > refinements there can hardly be massive changes anymore.
> 
> Yes, but that's not the part that I'm concerned about.  I'm sure the
> hardening flags component is fine.  But, because debhelper compatibility
> level 9 is experimental, Joey reserves the right to add more stuff to it
> (possibly completely unrelated to hardening flags), including changes that
> may not be backward-compatible.
> 
> I realize that a bunch of people have switched already, largely because of
> multiarch, but it would be nice not to make the problem larger.
> 
> > The freeze is only five months away and I'd rather see people going
> > forward with a straighforward solution than letting them inject build
> > flags on their own (which many people fail to do properly: Before I
> > started to submit patches last week, there have been very few
> > maintainers, who figured out how to enable hardened build flags
> > properly).
> 
> I'd just feel a lot better if you could get Joey to make compat level 9
> non-experimental so that we know that there won't be changes to debhelper
> that could result in FTBFS problems or the like between now and the
> freeze.

Let's just ask him.

Joey, what's the blocking bits before making debhelper compat level 9
non-experimental?

Cheers,
        Moritz



More information about the pkg-perl-maintainers mailing list