[Docker-maint] Bug#823014: [pkg-golang-devel] Bug#823014: golang: Package compiled stdlib for PIE build mode
Michael Hudson-Doyle
michael.hudson at canonical.com
Thu Jun 23 09:29:21 UTC 2016
The change looks OK to me. Thanks for working on it!
I guess it would be good to get Tianon or Paul to look at it too
before pushing to master (we'll need one of them to upload it too, or
grant me the right to do it).
Cheers,
mwh
On 23 June 2016 at 12:01, Peter Colberg <peter at colberg.org> wrote:
> Dear Debian Go compiler team,
>
> I have pushed commits for golang (pc/debian-sid) and golang-defaults
> (pc/master) that each add a package with the compiled Go stdlib for
> building position-independent executables.
>
> Please review the proposed changes before I push to master, and feel
> free to suggest a package name other than golang-X.Y-pie-dev.
>
> You can test PIE mode with the attached patch for acmetool, e.g.,
>
> gbp clone https://anonscm.debian.org/git/letsencrypt/acmetool.git
> cd acmetool && pristine-tar checkout acmetool_0.0.51.orig.tar.gz
> git am acmetool-build-with-pie-and-bindnow-hardening-flags.patch
>
> sbuild --extra-package=../golang-1.6-pie-dev_1.6.2-1_amd64.deb --extra-package=../pkg-golang/golang-pie-dev_1.6.1+1_amd64.deb
>
> Note the absent lintian warnings hardening-no-pie/hardening-no-bindnow.
>
> Once PIE-mode stdlib is in the archive, I will adapt dh-golang to
> support DEB_BUILD_MAINT_OPTIONS = hardening=+all in debian/rules.
>
> Regards,
> Peter
>
> _______________________________________________
> pkg-golang-devel mailing list
> pkg-golang-devel at lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-golang-devel
More information about the Docker-maint
mailing list