[cygport - the Cygwin packaging tool] branch master, updated. 0.36.7-5-gb7008d8a
Jon Turney
jturney@sourceware.org
Sun Feb 4 15:40:47 GMT 2024
https://sourceware.org/git/gitweb.cgi?p=cygwin-apps/cygport.git;h=b7008d8aa55c56a057b703530ca7fc71ba429d10
commit b7008d8aa55c56a057b703530ca7fc71ba429d10
Author: Christian Franke <christian.franke@t-online.de>
Date: Fri Feb 2 17:00:18 2024 +0100
Increase _FORTIFY_SOURCE level from 2 to 3 in CFLAGS
This enables buffer overflow checks if the buffer size is non-const
but known during runtime and GCC 12.0 or later is used.
https://sourceware.org/git/gitweb.cgi?p=cygwin-apps/cygport.git;h=1dabadf68e15dc65ee8b2cedda9949dda231a3df
commit 1dabadf68e15dc65ee8b2cedda9949dda231a3df
Author: Jon Turney <jon.turney@dronecode.org.uk>
Date: Mon Jan 15 13:37:05 2024 +0000
pkg: Add coredump to list of unexpected files in a package
Diff:
---
lib/compilers.cygpart | 4 ++--
lib/pkg_pkg.cygpart | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/lib/compilers.cygpart b/lib/compilers.cygpart
index 35e6fe28..52df5304 100644
--- a/lib/compilers.cygpart
+++ b/lib/compilers.cygpart
@@ -34,9 +34,9 @@ declare -x CC="gcc";
# Flags passed to CC when compiling C code. Individual packages may append
# or override this value if they will not build correctly without it.
# DEFAULT VALUE
-# -ggdb -O2 -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fstack-protector-strong --param=ssp-buffer-size=4
+# -ggdb -O2 -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=3 -fstack-protector-strong --param=ssp-buffer-size=4
#****
-declare -x CFLAGS="-ggdb -O2 -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fstack-protector-strong --param=ssp-buffer-size=4";
+declare -x CFLAGS="-ggdb -O2 -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=3 -fstack-protector-strong --param=ssp-buffer-size=4";
#****v* Compiling/CPPFLAGS
# DESCRIPTION
diff --git a/lib/pkg_pkg.cygpart b/lib/pkg_pkg.cygpart
index c78b1c49..8f06a5f6 100644
--- a/lib/pkg_pkg.cygpart
+++ b/lib/pkg_pkg.cygpart
@@ -281,7 +281,7 @@ __pkg_pkgcheck() {
sort < ${tmp1} > "${tmp1}.sorted";
mv -f "${tmp1}.sorted" ${tmp1};
- if grep -E "^usr/local|\.stackdump$" ${tmp1} > ${T}/pkgcheck.lst
+ if grep -E "^usr/local|\.stackdump$|\.core$" ${tmp1} > ${T}/pkgcheck.lst
then
warning "Packages contain unexpected files:";
cat ${T}/pkgcheck.lst;
More information about the Cygwin-apps-cvs
mailing list