security_flags: turn potential string format security issues into an error - linux/poky.git

diff options

author	Joshua Lock <joshua.g.lock@intel.com>	2016-04-28 14:27:44 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2016-05-06 10:31:12 +0100
commit	30f9a5072d94f6c383b1ef5d25448af39691dce0 (patch)
tree	23ec4a94da2f639fa5ce077613e81a18c50c4958 /meta/recipes-extended/packagegroups/packagegroup-core-lsb.bb
parent	8fa797d73b6266bb3fadcaf6d53ef7adca7f47ba (diff)
download	poky-30f9a5072d94f6c383b1ef5d25448af39691dce0.tar.gz

security_flags: turn potential string format security issues into an error

Add "-Wformat -Wformat-security -Werror=format-security" to the default SECURITY_CFLAGS to catch potential security vulnerabilities due to the misuse of various string formatting functions. These flags are widely used in distributions such as Fedora and Ubuntu, however we have 15 recipes in OE-Core which fail to build with these flags included and thus the flags are removed for: - busybox - console-tools - cmake - expect - gcc - gettext - kexec-tools - leafpad - libuser - ltp - makedevs - oh-puzzles - stat - unzip - zip [YOCTO #9488] (From OE-Core rev: f335f8e744fb312b3eb599c331d08a9a6e5a8ff8) Signed-off-by: Joshua Lock <joshua.g.lock@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-extended/packagegroups/packagegroup-core-lsb.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: