From 62f65d15ca1ffaee1675a94d174259f4eca853b8 Mon Sep 17 00:00:00 2001
From: Robin Gloster <mail@glob.in>
Date: Fri, 26 Feb 2016 17:54:46 +0000
Subject: [PATCH] chrony: enable pie hardening

---
 pkgs/tools/networking/chrony/default.nix | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/pkgs/tools/networking/chrony/default.nix b/pkgs/tools/networking/chrony/default.nix
index dca92c565af..57981fdaa66 100644
--- a/pkgs/tools/networking/chrony/default.nix
+++ b/pkgs/tools/networking/chrony/default.nix
@@ -15,6 +15,8 @@ stdenv.mkDerivation rec {
   buildInputs = [ readline texinfo nss nspr ] ++ stdenv.lib.optional stdenv.isLinux libcap;
   nativeBuildInputs = [ pkgconfig ];
 
+  hardening_pie = true;
+
   configureFlags = [
     "--chronyvardir=$(out)/var/lib/chrony"
   ];