Package: tinyproxy
Version: 1.8.3-1
Severity: important
Tags: patch
Please enable hardened build flags for your package. Since your
package has already been converted to dh, setting debian/compat
to 9 is all you need to do. It injects the needed flags
automatically.
Also it needs a small patch to the configure.ac, otherwise the
configures doesn't allow expanding LDFLAGS.
I've tested in a local build that this is sufficient to enable
hardened build flags.
Cheers,
Moritz
diff -aur tinyproxy-1.8.3.orig/configure.ac tinyproxy-1.8.3/configure.ac
--- tinyproxy-1.8.3.orig/configure.ac 2011-08-16 14:14:58.000000000 +0200
+++ tinyproxy-1.8.3/configure.ac 2012-01-14 13:58:12.000000000 +0100
@@ -222,7 +222,7 @@
CFLAGS="-DNDEBUG $CFLAGS"
fi
-LDFLAGS="-Wl,-z,defs"
+LDFLAGS="-Wl,-z,defs $LDFLAGS"
dnl
dnl Make sure we can actually handle the "--with-*" and "--enable-*" stuff.
Nur in tinyproxy-1.8.3: configure.ac~.
diff -aur tinyproxy-1.8.3.orig/debian/compat tinyproxy-1.8.3/debian/compat
--- tinyproxy-1.8.3.orig/debian/compat 2012-01-02 14:38:43.000000000 +0100
+++ tinyproxy-1.8.3/debian/compat 2012-01-14 13:58:16.000000000 +0100
@@ -1 +1 @@
-8
+9
Nur in tinyproxy-1.8.3/debian: compat~.
