Rebuild Todo List hardening-wrapper removal
2017-07-10 - Bartłomiej Piotrowski
With recent changes in toolchain, it is feasible to replace hardening-wrapper with simple rebuild against testing (with testing/devtools installed). The major differences are lack of -fstack-check (which is not enough to prevent stack clashes without full distro rebuild) and no enforcement of full RELRO if LDFLAGS are ignored.
Remove hardening-wrapper from makedepends and run checksec on both old and rebuild packages to see if there is any regression. If yes, it means that build system should be patched to reflect out LDFLAGS instead; otherwise push packages to stable repositories and mark them as done.
Filter Todo List Packages
| Arch | Repository | Name | Current Version | Staging Version | Maintainers | Status | Last Touched By |
|---|---|---|---|---|---|---|---|
| x86_64 | Extra | ffmpeg | 2:6.1.1-7 | alucryd | Complete | alucryd | |
| x86_64 | Extra | ffmpeg2.8 | Complete | alucryd | |||
| x86_64 | Extra | ghostscript | 10.03.0-2 | andyrtr | Complete | andyrtr | |
| x86_64 | Extra | gpsd | 3.25-3 | jlichtblau, arojas | Complete | anthraxx | |
| x86_64 | Extra | libunrar | 1:7.0.7-1 | arojas | Complete | arojas | |
| x86_64 | Extra | nginx | 1.24.0-3 | mtorromeo, anthraxx, grazzolini, blakkheim | Complete | bpiotrowski | |
| x86_64 | Extra | python2 | Complete | felixonmars | |||
| x86_64 | Extra | unrar | 1:7.0.7-1 | arojas | Complete | arojas |