Re: Lintian warning hardening-no-stackprotector although compiled with hardening options

[Sven Joachim <svenjoac@gmx.de>]

On 2012-05-17 17:25 +0200, Daniel Leidert wrote:

> The html-xml-utils package contains a bunch of small helper programs.
> I've chosen dh 9 compatibility level recently to enable hardening.
> However, I still get lintian warnings for 3 binaries. However all
> binaries are compiled and linked with the same flags. The only
> difference I see is, that the 3 binaries in question are made of only
> one object file, whereas all other binaries are linked together by two
> or more object files.
>
> So why does lintian give me those warnings

Probably your package does not allocate any character arrays on the
stack.  See "lintian-info -t hardening-no-stackprotector" and
hardening-check(1).

> and how can it be fixed?

There needs to be a better way to detect if a program was built with
-fstack-protector, or the warning should be made experimental.
See also #673112.

Cheers,
       Sven