From 98afeb4ad0f5c498d06f1f1de542d8387b0b6220cd07f610dfe4b9b1b790b0a5 Mon Sep 17 00:00:00 2001
From: Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>
Date: Fri, 5 Mar 2021 07:59:37 +0000
Subject: [PATCH] Accepting request 876802 from
 home:elvigia:branches:devel:libraries:c_c++

- Harden build, enable full RELRO
- Never allow undefined symbols anywhere.

OBS-URL: https://build.opensuse.org/request/show/876802
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=292
---
 curl.changes | 6 ++++++
 curl.spec    | 2 +-
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/curl.changes b/curl.changes
index c528f35..e993667 100644
--- a/curl.changes
+++ b/curl.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Thu Mar  4 17:46:40 UTC 2021 - Cristian Rodríguez <crrodriguez@opensuse.org>
+
+- Harden build, enable full RELRO
+- Never allow undefined symbols anywhere.
+
 -------------------------------------------------------------------
 Thu Feb  4 11:20:22 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
 
diff --git a/curl.spec b/curl.spec
index 8c43ac5..6952c35 100644
--- a/curl.spec
+++ b/curl.spec
@@ -102,7 +102,7 @@ CPPFLAGS="-D_FORTIFY_SOURCE=2"
 CFLAGS=$(echo "%{optflags}" | sed -e 's/-D_FORTIFY_SOURCE=2//')
 export CPPFLAGS
 export CFLAGS="$CFLAGS -fPIE"
-export LDFLAGS="$LDFLAGS -pie"
+export LDFLAGS="$LDFLAGS -Wl,-z,defs,-z,now,-z,relro -pie"
 autoreconf -fiv
 # local hack to make curl-config --libs stop printing libraries it depends on
 # (currently, libtool sets link_all_deplibs=(yes|unknown) everywhere,