Hardening code during polyorb packaging

[Xavier Grave <xavier.grave@ipno.in2p3.fr>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

Bitten by a few lintian warnings :
hardening-no-fortify-functions, hardening-no-relro and
hardening-no-stackprotector
I started to look at [1].

But a first look at the dpkg-buildflags output :
CFLAGS=-g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat
- -Werror=format-security
CPPFLAGS=-D_FORTIFY_SOURCE=2
CXXFLAGS=-g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat
- -Werror=format-security
FFLAGS=-g -O2
LDFLAGS=-Wl,-z,relro
isn't really probing for Ada coding.

Does anyone already played/experimented with this kind of options with
Ada code ? I suspect part of it doesn't really make sense for Ada...

I'll try to find time to investigate on this, but if I can benefit from
your expertise, I'll be glad :)

xavier

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=AyvT
-----END PGP SIGNATURE-----