Bug#657699: lintian: check pkgconfig files for stray hardening flags
Package: lintian
Version: 2.5.4
Severity: wishlist
I modified a package today to enable hardening, and was surprised to
discover -Wl,-z,relro in the Libs field of the resulting *.pc file,
and -D_FORTIFY_SOURCE=2 in the Cflags field. This obviously isn't
correct; the hardening flags aren't required to build clients of the
library.
I don't think that copying CPPFLAGS and LDFLAGS directly into the *.pc
file is the right thing to do upstream (and will be talking to them
about that), but it would be good to have a Lintian check for this as
well, since I suspect this is a mistake that more than one upstream
will make.
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 3.1.0-1-686-pae (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages lintian depends on:
ii binutils 2.22-4
ii bzip2 1.0.6-1
ii diffstat 1.55-2
ii file 5.09-2
ii gettext 0.18.1.1-5
ii intltool-debian 0.35.0+20060710.1
ii libapt-pkg-perl 0.1.25+b1
ii libclass-accessor-perl 0.34-1
ii libclone-perl 0.31-1+b2
ii libdpkg-perl 1.16.1.2
ii libemail-valid-perl 0.185-1
ii libipc-run-perl 0.90-1
ii libparse-debianchangelog-perl 1.2.0-1
ii libtimedate-perl 1.2000-1
ii liburi-perl 1.59-1
ii locales 2.13-24
ii man-db 2.6.0.2-3
ii patchutils 0.3.2-1.1
ii perl [libdigest-sha-perl] 5.14.2-6
ii unzip 6.0-5
lintian recommends no packages.
Versions of packages lintian suggests:
ii binutils-multiarch <none>
ii dpkg-dev 1.16.1.2
ii libhtml-parser-perl 3.69-1+b1
ii libtext-template-perl 1.45-2
ii man-db 2.6.0.2-3
ii xz-utils 5.1.1alpha+20110809-3
-- no debconf information
Reply to: