On Wed, Jul 27, 2016 at 11:20:33AM -0300, Paulo wrote: > I'm adopting package lostirc with problems to solve hardening issue. > > The package builds ok but with lintian: > I: lostirc: hardening-no-fortify-functions usr/bin/lostirc > > blhc --all ../lostirc_0.4.6-5_amd64.build > Returns nothing but > > hardening-check -v debian/lostirc/usr/bin/lostirc > debian/lostirc/usr/bin/lostirc: > Position Independent Executable: yes > Stack protected: yes > Fortify Source functions: no, only unprotected functions found! > unprotected: memmove > unprotected: read > unprotected: memcpy > unprotected: gethostname > unprotected: recv > Read-only relocations: yes > Immediate binding: yes > > I verified build log and I found flag: -D_FORTIFY_SOURCE=2 at all cpp compile > lines. From the tag extended description:
NB: Due to false-positives, Lintian ignores some unprotected functions (e.g. memcpy). Refer to https://wiki.debian.org/Hardening and https://bugs.debian.org/673112 for details. -- WBR, wRAR
signature.asc
Description: PGP signature