On 27.02.2017 23:45, Thorsten Glaser wrote: > Guillem Jover dixit: > >> This is wrong in so many levels, as we'll have discrepancies between >> architectures, the interface towards maintainers is inconsistent, and >> updating the PIE support needs touching and coordinating two places. But > > Not quite: it *only* needs changing in GCC now that dpkg keeps its > hands off the default PIE setting. > >> it's certainly the current lesser evil. > > That, yes. It additionally is the better way to do this because the > -specs= stuff was inherently broken (consider compiler wrappers for > other libcs which do their own specs stuff) and otherwise fragile, > while the “PIE is enabled by default in GCC” mechanism is used by > all architectures now and better understood (and having some arch > not defaulting to PIE is a safe (even if less “secure”) failure mode. > > Thank you for this change — now I can probably remove all the > special CFLAGS handling from my packages again… > > … will this land in stretch? (If not, I’d better keep it in.)
yes, same question here (although I'd like to wait for the the current gcc-6 to migrate first). Thanks, Matthias
