Andres Freund <and...@anarazel.de> writes:
> I'm inclined to build the static lib on windows as long as we do it on other
> platforms.
Maybe I spent too much time working for Red Hat, but I'm kind of
unhappy that we build static libraries at all. They are maintenance
hazards and therefore security hazards by definition, because if
you find a problem in $package_x you will have to find and rebuild
every other package that has statically-embedded code from $package_x.
So Red Hat has, or least had, a policy against packages exporting
such libraries.
I realize that there are people for whom other considerations outweigh
that, but I don't think that we should install static libraries by
default. Long ago it was pretty common for configure scripts to
offer --enable-shared and --enable-static options ... should we
resurrect that?
regards, tom lane
