Uploaded image for project: 'AMQ Clients'
  1. AMQ Clients
  2. ENTMQCL-1590

[c] Hardening GCC flags are not fully applied when compiling Qpid Proton

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Minor Minor
    • 2.8.0.B1
    • 2.5.0.B1
    • proton-c
    • Yorba 

      Detecting usr/lib64/libqpid-proton.so.11.8.1 with not-hardened warnings '
Hardened: libqpid-proton.so.11.8.1: MAYB: The -D_FORTIFY_SOURCE=2 option was not seen.
Hardened: libqpid-proton.so.11.8.1: FAIL: GNU Property note is missing, but -fcf-protection is enabled.
' on x86_64

      I think this is not completely a tooling issue as suggested in the waiver text. There is possibly related issue observable upstream, in that CMake in Proton injects flags that are incompatible with the hardening flags. https://issues.apache.org/jira/browse/PROTON-2080 

      cc1plus: warning: -Wformat-security ignored without -Wformat [-Wformat-security]

            astitcher Andrew Stitcher
            jdanek@redhat.com Jiri Daněk
            Jiri Daněk Jiri Daněk
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: