On 6 April 2018 at 10:32, Paride Legovini wrote:
> Is manually specifying ‘-buildmode=pie’ in d/rules still the right and
> only way to build PIE hardened binaries?
>
Yes, currently.
> More specifically, what I'm doing is:
>
> export DEB_BUILD_MAINT_OPTIONS = hardening=+all
>
We should /prob
Is manually specifying ‘-buildmode=pie’ in d/rules still the right and
only way to build PIE hardened binaries?
More specifically, what I'm doing is:
export DEB_BUILD_MAINT_OPTIONS = hardening=+all
export DEB_LDFLAGS_MAINT_APPEND = -Wl,--as-needed
GO_LINK_FLAGS += -extldflags "$(LDFLAGS)"
GO_FL
On 16 July 2016 at 15:40, Peter Colberg wrote:
> On Fri, Jul 15, 2016 at 04:04:26PM -0700, Tianon Gravi wrote:
>> - the "Build-Profiles" bits -- I know we should be using
>> build-profiles more intelligently throughout src:golang-X.Y, but is
>> there something specific to PIE itself that makes it
On Fri, Jul 15, 2016 at 04:04:26PM -0700, Tianon Gravi wrote:
> - the "Build-Profiles" bits -- I know we should be using
> build-profiles more intelligently throughout src:golang-X.Y, but is
> there something specific to PIE itself that makes it more
> necessary/appropriate than in the normal case?
On 14 July 2016 at 10:12, Peter Colberg wrote:
> Tianon, can this be merged into golang-1.6 and golang-1.7?
Yeah, overall I'm +1 on the idea! (especially since Michael thinks it's sane)
I have a few questions about the patch:
- the "Build-Profiles" bits -- I know we should be using
build-profil
On Thu, Jun 23, 2016 at 09:29:21PM +1200, Michael Hudson-Doyle wrote:
> The change looks OK to me. Thanks for working on it!
>
> I guess it would be good to get Tianon or Paul to look at it too
> before pushing to master (we'll need one of them to upload it too, or
> grant me the right to do it).
The change looks OK to me. Thanks for working on it!
I guess it would be good to get Tianon or Paul to look at it too
before pushing to master (we'll need one of them to upload it too, or
grant me the right to do it).
Cheers,
mwh
On 23 June 2016 at 12:01, Peter Colberg wrote:
> Dear Debian Go c
Dear Debian Go compiler team,
I have pushed commits for golang (pc/debian-sid) and golang-defaults
(pc/master) that each add a package with the compiled Go stdlib for
building position-independent executables.
Please review the proposed changes before I push to master, and feel
free to suggest a
On Fri, Apr 29, 2016 at 08:18:14PM -0400, Peter Colberg wrote:
> Please consider adding the following patch, which builds an optional
> package containing the compiled standard library for PIE build mode.
I revised the patch to tighten the versioned dependency on golang-go.
Peter
>From dda0f9d4aa
Package: golang
Version: 2:1.6.1-2
Severity: normal
Tags: patch
Dear Maintainer,
Please consider adding the following patch, which builds an optional
package containing the compiled standard library for PIE build mode.
This is a prerequisite for building position-independent executables
for the
10 matches
Mail list logo
