From fb57bfbd4f66943b59ed67499aa8cb0c8f4f9e6f Mon Sep 17 00:00:00 2001
From: Franz Pletz <fpletz@fnordicwalking.de>
Date: Sun, 6 Mar 2016 00:15:18 +0100
Subject: [PATCH] php: enable PIE hardening

---
 pkgs/development/interpreters/php/default.nix | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/pkgs/development/interpreters/php/default.nix b/pkgs/development/interpreters/php/default.nix
index 5503ee9c887..0c28d9cb299 100644
--- a/pkgs/development/interpreters/php/default.nix
+++ b/pkgs/development/interpreters/php/default.nix
@@ -249,6 +249,8 @@ let
         calendarSupport = config.php.calendar or true;
       };
 
+      hardeningEnable = [ "pie" ];
+
       configurePhase = ''
         # Don't record the configure flags since this causes unnecessary
         # runtime dependencies.