[Docker-maint] Bug#823014: golang: Package compiled stdlib for PIE build mode
Peter Colberg
peter at colberg.org
Thu Jun 23 00:01:30 UTC 2016
Dear Debian Go compiler team,
I have pushed commits for golang (pc/debian-sid) and golang-defaults
(pc/master) that each add a package with the compiled Go stdlib for
building position-independent executables.
Please review the proposed changes before I push to master, and feel
free to suggest a package name other than golang-X.Y-pie-dev.
You can test PIE mode with the attached patch for acmetool, e.g.,
gbp clone https://anonscm.debian.org/git/letsencrypt/acmetool.git
cd acmetool && pristine-tar checkout acmetool_0.0.51.orig.tar.gz
git am acmetool-build-with-pie-and-bindnow-hardening-flags.patch
sbuild --extra-package=../golang-1.6-pie-dev_1.6.2-1_amd64.deb --extra-package=../pkg-golang/golang-pie-dev_1.6.1+1_amd64.deb
Note the absent lintian warnings hardening-no-pie/hardening-no-bindnow.
Once PIE-mode stdlib is in the archive, I will adapt dh-golang to
support DEB_BUILD_MAINT_OPTIONS = hardening=+all in debian/rules.
Regards,
Peter
-------------- next part --------------
A non-text attachment was scrubbed...
Name: acmetool-build-with-pie-and-bindnow-hardening-flags.patch
Type: text/x-diff
Size: 1312 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/docker-maint/attachments/20160622/f18e6df4/attachment.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/docker-maint/attachments/20160622/f18e6df4/attachment.sig>
More information about the Docker-maint
mailing list