Lintian warning hardening-no-stackprotector although compiled with hardening options
On 2012-05-17 17:25 +0200, Daniel Leidert wrote:
> The html-xml-utils package contains a bunch of small helper programs.
> I've chosen dh 9 compatibility level recently to enable hardening.
> However, I still get lintian warnings for 3 binaries. However all
> binaries are compiled and linked with the same flags. The only
> difference I see is, that the 3 binaries in question are made of only
> one object file, whereas all other binaries are linked together by two
> or more object files.
> So why does lintian give me those warnings
Probably your package does not allocate any character arrays on the
stack. See "lintian-info -t hardening-no-stackprotector" and
> and how can it be fixed?
There needs to be a better way to detect if a program was built with
-fstack-protector, or the warning should be made experimental.
See also #673112.
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact email@example.com