fails to compile on non-x86 targets https://errors.yoctoproject.org/Errors/Details/420545/ https://errors.yoctoproject.org/Errors/Details/420538/ https://errors.yoctoproject.org/Errors/Details/420536/
On Fri, Jul 10, 2020 at 11:35 AM Khem Raj <raj.k...@gmail.com> wrote: > > > > On 7/9/20 10:16 PM, Naveen Saini wrote: > > The Secure Development Lifecycle (SDL) recommends banning certain > > C Library functions because they directly contribute to security > > vulnerabilities such as buffer overflows. > > > > However routines for the manipulation of strings and memory buffers > > are common in software and firmware, and are essential to accomplish > > certain programming tasks. > > > > Safer replacements for these functions that avoid or prevent serious > > security vulnerabilities (e.g. buffer overflows, string format attacks, > > conversion overflows/underflows, etc.) are available in the SafeString > > Library. > > > > Ref: > > https://github.com/intel/safestringlib > > We also carry recipe for safec https://github.com/rurban/safeclib > is this a replacement in some sense ? > > > > > Signed-off-by: Naveen Saini <naveen.kumar.sa...@intel.com> > > --- > > .../safestringlib/safestringlib_git.bb | 26 +++++++++++++++++++ > > 1 file changed, 26 insertions(+) > > create mode 100644 > > meta-oe/recipes-support/safestringlib/safestringlib_git.bb > > > > diff --git a/meta-oe/recipes-support/safestringlib/safestringlib_git.bb > > b/meta-oe/recipes-support/safestringlib/safestringlib_git.bb > > new file mode 100644 > > index 000000000..3d54fc8d6 > > --- /dev/null > > +++ b/meta-oe/recipes-support/safestringlib/safestringlib_git.bb > > @@ -0,0 +1,26 @@ > > +SUMMARY = "Safe string operations and memory routines" > > +SECTION = "libs" > > +LICENSE = "MIT" > > +LIC_FILES_CHKSUM = > > "file://LICENSE©ING.txt;md5=edd6f8c4c1072d72645ae28cb04bdbce \ > > + file://LICENSE;md5=54f68ba2c33474320fcc46b1f2d01249" > > + > > +SRC_URI = "git://github.com/intel/safestringlib.git;protocol=https \ > > + " > > + > > +PV = "1.0.0+git${SRCPV}" > > +SRCREV = "245c4b8cff1d2e7338b7f3a82828fc8e72b29549" > > + > > +S = "${WORKDIR}/git" > > + > > +inherit pkgconfig cmake > > + > > +do_install() { > > + install -d ${D}${libdir} > > + install -d ${D}${includedir} > > + install -m 0644 ${B}/libsafestring_shared.so ${D}${libdir} > > + install -m 0644 ${B}/libsafestring_static.a ${D}${libdir} > > + install -m 0644 ${S}/include/*.h ${D}${includedir} > > +} > > + > > +SOLIBS = ".so" > > +FILES_SOLIBSDEV = "" > > > > > > > >
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#85734): https://lists.openembedded.org/g/openembedded-devel/message/85734 Mute This Topic: https://lists.openembedded.org/mt/75413264/21656 Group Owner: openembedded-devel+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
