[hardening-discuss] Bug#596365: hardening-wrapper: Consider unifying functionality of pentium-builder and apt-build wrappers.
Witold Baryluk
baryluk at smp.if.uj.edu.pl
Fri Sep 10 18:34:53 UTC 2010
Package: hardening-wrapper
Severity: wishlist
Hi,
guys, I was recently recompiled few base tools for my own machine 32bit core2,
and noticed some noticable speed improvements.
I started mini project to have own repository of usefull packages,
which will just recompile debian's packages.
Unfortunetly some debian/rules, do not properly use dpkg-buildflags,
or do not use it at all. I filed few bugs (really simple single line changes),
but I do not think such changes will be made quickly or for most
of packages.
I also know about pentium-builder and apt-build, which provides
wrappers around gcc, to inject compile time options. I know
this isn't best option, but consider that hardening-wrapper do the same.
As apt-build is for some time not matintained and buggy, and that
pentium-builder is also not active, i was going to ask,
could you add for example simple mechanism:
DEB_BUILD_HARDENING_CFLAGS_APPEND=...
DEB_BUILD_HARDENING_LDFLAGS_APPEND=...
DEB_BUILD_HARDENING_CXXFLAGS_APPEND=...
DEB_BUILD_HARDENING_FFLAGS_APPEND=...
?
I have similar mechnism already in my build system (based on sbuild),
but it will be much more usefull to have standard way to do this.
And hardening-wrapper is maintained, in contrast to apt-build and pentium-
builder :)
Thanks.
-- System Information:
Debian Release: squeeze/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core)
Locale: LANG=pl_PL.UTF-8, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to pl_PL.UTF-8)
Shell: /bin/sh linked to /bin/dash
More information about the hardening-discuss
mailing list