Bug#643421: marked as done (libeventdb: FTBFS: sqlite.c:429:7: error: format not a string literal and no format arguments [-Werror=format-security])

Sun, 02 Oct 2011 06:21:29 -0700 

Your message dated Sun, 02 Oct 2011 13:17:46 +0000
with message-id <e1ralvo-00014e...@franck.debian.org>
and subject line Bug#643421: fixed in libeventdb 0.90-5
has caused the Debian Bug report #643421,
regarding libeventdb: FTBFS: sqlite.c:429:7: error: format not a string literal 
and no format arguments [-Werror=format-security]
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
643421: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=643421
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message --- 
Source: libeventdb
Version: 0.90-4
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20110923 qa-ftbfs hardening-format-security hardening
Justification: FTBFS on amd64

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64.

Relevant part:
>  gcc -DPACKAGE_NAME=\"libeventdb\" -DPACKAGE_TARNAME=\"libeventdb\" 
> -DPACKAGE_VERSION=\"0.90\" "-DPACKAGE_STRING=\"libeventdb 0.90\"" 
> -DPACKAGE_BUGREPORT=\"gpe-l...@linuxtogo.org\" -DPACKAGE=\"libeventdb\" 
> -DVERSION=\"0.90\" -DSTDC_HEADERS=1 -DHAVE_SYS_TYPES_H=1 -DHAVE_SYS_STAT_H=1 
> -DHAVE_STDLIB_H=1 -DHAVE_STRING_H=1 -DHAVE_MEMORY_H=1 -DHAVE_STRINGS_H=1 
> -DHAVE_INTTYPES_H=1 -DHAVE_STDINT_H=1 -DHAVE_UNISTD_H=1 -DHAVE_DLFCN_H=1 -I. 
> -I. -pthread -I/usr/include/glib-2.0 -I/usr/lib/glib-2.0/include 
> -D_XOPEN_SOURCE -DPACKAGE_LOCALE_DIR=\"/usr/share/locale/libeventdb\" 
> -D_GNU_SOURCE -g -O2 -fstack-protector --param=ssp-buffer-size=4 
> -D_FORTIFY_SOURCE=2 -Wformat -Wformat-security -Werror=format-security -Wall 
> -c sqlite.c  -fPIC -DPIC -o .libs/sqlite.o
> sqlite.c: In function 'do_events_enumerate':
> sqlite.c:429:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_set_default_calendar':
> sqlite.c:444:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_eventid_to_uid':
> sqlite.c:465:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_new':
> sqlite.c:500:3: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_load':
> sqlite.c:531:3: warning: passing argument 3 of 'sqlite_step' from 
> incompatible pointer type [enabled by default]
> /usr/include/sqlite.h:706:5: note: expected 'const char ***' but argument is 
> of type 'char ***'
> sqlite.c:531:3: warning: passing argument 4 of 'sqlite_step' from 
> incompatible pointer type [enabled by default]
> /usr/include/sqlite.h:706:5: note: expected 'const char ***' but argument is 
> of type 'char ***'
> sqlite.c: In function 'do_event_load_details':
> sqlite.c:581:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_flush':
> sqlite.c:680:34: warning: cast from pointer to integer of different size 
> [-Wpointer-to-int-cast]
> sqlite.c:696:3: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_remove':
> sqlite.c:719:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_list_unacknowledged_alarms':
> sqlite.c:823:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_mark_unacknowledged':
> sqlite.c:867:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_acknowledge_alarms_through':
> sqlite.c:902:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_calendar_new':
> sqlite.c:927:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_calendar_delete':
> sqlite.c:986:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_calendar_list_events':
> sqlite.c:1049:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_calendar_list_deleted':
> sqlite.c:1087:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'do_event_calendar_flush_deleted':
> sqlite.c:1106:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> sqlite.c: In function 'event_db_new':
> sqlite.c:1638:7: error: format not a string literal and no format arguments 
> [-Werror=format-security]
> cc1: some warnings being treated as errors
> 
> make[2]: *** [sqlite.lo] Error 1

The full build log is available from:
   
http://people.debian.org/~lucas/logs/2011/09/23/libeventdb_0.90-4_lsid64.buildlog

This happened because since dpkg 1.16.0 [0], hardening flags are enabled 
under various conditions.

[0] http://lists.debian.org/debian-devel-announce/2011/09/msg00001.html

A list of current common problems and possible solutions is available at 
http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute!

About the archive rebuild: The rebuild was done on about 50 AMD64 nodes
of the Grid'5000 platform, using a clean chroot.  Internet was not
accessible from the build systems.

--- End Message ---
--- Begin Message --- 
Source: libeventdb
Source-Version: 0.90-5

We believe that the bug you reported is fixed in the latest version of
libeventdb, which is due to be installed in the Debian FTP archive:

libeventdb-dev_0.90-5_amd64.deb
  to main/libe/libeventdb/libeventdb-dev_0.90-5_amd64.deb
libeventdb2-dbg_0.90-5_amd64.deb
  to main/libe/libeventdb/libeventdb2-dbg_0.90-5_amd64.deb
libeventdb2_0.90-5_amd64.deb
  to main/libe/libeventdb/libeventdb2_0.90-5_amd64.deb
libeventdb_0.90-5.debian.tar.gz
  to main/libe/libeventdb/libeventdb_0.90-5.debian.tar.gz
libeventdb_0.90-5.dsc
  to main/libe/libeventdb/libeventdb_0.90-5.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 643...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Neil Williams <codeh...@debian.org> (supplier of updated libeventdb package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Sun, 02 Oct 2011 13:29:06 +0100
Source: libeventdb
Binary: libeventdb-dev libeventdb2 libeventdb2-dbg
Architecture: source amd64
Version: 0.90-5
Distribution: unstable
Urgency: low
Maintainer: Moray Allan <mo...@debian.org>
Changed-By: Neil Williams <codeh...@debian.org>
Description: 
 libeventdb-dev - library that provides access to gpe-calendar data 
[development]
 libeventdb2 - library that provides access to gpe-calendar data [runtime]
 libeventdb2-dbg - library that provides access to gpe-calendar data [debugging]
Closes: 643421
Changes: 
 libeventdb (0.90-5) unstable; urgency=low
 .
   * Specify string formats for SIGNAL_ERROR macro
     (Closes: #643421)
Checksums-Sha1: 
 588edd96b0d4ef4edaecfa4e3a65eb5da1f4bc95 1551 libeventdb_0.90-5.dsc
 cc4f53d11ea2a5200e26cecefad9eeb120cec243 4593 libeventdb_0.90-5.debian.tar.gz
 bf1d907d7bad342f304e2252960f8d13afd7f845 82760 libeventdb-dev_0.90-5_amd64.deb
 066b6b30f75f9710bea61ff5b8f80a368e2e45fc 53056 libeventdb2_0.90-5_amd64.deb
 8f91158e78db7156850b1b5332d6ac82f7f6d0fe 83244 libeventdb2-dbg_0.90-5_amd64.deb
Checksums-Sha256: 
 f8eabd94643b1d96676ca2acc9b3522321dd0dbb88e7a59c7e0aaed8ab53a25a 1551 
libeventdb_0.90-5.dsc
 f2128809b8d819ae2b38528bb5f66e295c61b7511dfb587f53eca85a5de824b2 4593 
libeventdb_0.90-5.debian.tar.gz
 1a1630c7c70a0dca7fdc5c2fda6e71cf0421f45915387a8a512ee589a63d9457 82760 
libeventdb-dev_0.90-5_amd64.deb
 94ec0df0c697add181e7e9f6d6c794c6c86680352912dff137905b7fa1655f4d 53056 
libeventdb2_0.90-5_amd64.deb
 1d8ffa3016496aaeb5259c05c11cbe2e35ccc60de513b94f90776359532969c0 83244 
libeventdb2-dbg_0.90-5_amd64.deb
Files: 
 8eb44933aacdbba193c5b33ffe04c1f2 1551 libs optional libeventdb_0.90-5.dsc
 a21be9c5934f7cfbc33bff81f256a6b3 4593 libs optional 
libeventdb_0.90-5.debian.tar.gz
 785d0feaed98d1c0045b1be100de65b9 82760 libdevel optional 
libeventdb-dev_0.90-5_amd64.deb
 cf4881d60a44c6f5d2294076fe3f78d1 53056 libs optional 
libeventdb2_0.90-5_amd64.deb
 59f6f712c1735680af13b3dc020eee47 83244 debug extra 
libeventdb2-dbg_0.90-5_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk6IYaMACgkQiAEJSii8s+N4eQCgpoQAKwghc6OqmmBxcl+Jcn4e
QAYAmgL0gKrI8mUPekFeELazES7Hus+3
=67Gi
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to