Package: dpkg-dev Version: 1.21.9 Severity: wishlist Hi,
According to https://developers.redhat.com/articles/2022/09/17/gccs-new-fortification-level, _FORTIFY_SOURCE=3 improves memory management protections. It requires glibc 2.34. It's been supported in Clang "for some time" and support was added to GCC 12. I understand it has some performance impact. I suppose we don't want to switch hardening=fortify fortification level 3, at least to start with. So perhaps a new hardening=XYZ flag could allow package maintainers to opt-in? Cheers!
