Hi, since dpkg 1.22.0 the additional hardening flags to enable Pointer Authentication (PAC) and Branch Target Identification (BTI) on arm64 are enabled by default. See [1] for the discussion to enable these flags.
To have the desired effect for the next release and have some time to catch regressions, I have started with scheduling rebuilds of packages that have not been built since the change in the default flags. While the change of flags only affects arm64, packages building Multi-Arch: same binaries require consistent versions on all architectures. For those packages, the rebuilds have been scheduled on all architectures. Note that all builds have been scheduled with build priority -50, so builds of uploads have higher priority and will be picked up by the buildds before PAC/BTI rebuilds. Thanks to Emanuele Rocca for identifying the list of packages that have to be rebuilt to gain PAC/BTI support. Cheers [1] https://lists.debian.org/debian-dpkg/2022/05/msg00022.html -- Sebastian Ramacher
