Becaues of the foolish usage of gcc_secure, those safety options was
added by OBS with gcc_secure, without our knowing it.
Especially, gcc_secure does this by change gcc to a shell script, and
hide the true gcc. This makes a huge amount of confusion for developers
and users.
So we add these options
'-fPIC -D_FORTIFY_SOURCE=2 -O2 -Wl,-z,relro -Wl,-z,now -Wl,-z,noexecstack -Wtrampolines -fsigned-char'
directly to nginx.spec.
After this, we can confirm the compile options' consistency with or
without gcc_secure.
Signed-off-by: snoweay <snoweay@163.com>
(cherry picked from commit bb0a157ddfef4c1f5f1baa276392f0aae46feddb)
