[lintian] 04/06: Remove the hardening-no-stackprotector tag
This is an automated email from the git hooks/post-receive script.
jwilk pushed a commit to branch master
in repository lintian.
commit af283fce10e57816b13db32ed2c0575c0787c008
Author: Jakub Wilk <jwilk@debian.org>
Date: Mon Sep 19 20:29:07 2016 +0200
Remove the hardening-no-stackprotector tag
This tag is no longer emitted since 8f40b6935e51.
---
checks/binaries.desc | 11 -----------
debian/changelog | 5 ++++-
private/generate-profiles.pl | 1 -
profiles/debian/main.profile | 1 -
4 files changed, 4 insertions(+), 14 deletions(-)
diff --git a/checks/binaries.desc b/checks/binaries.desc
index 4893c60..9cee31c 100644
--- a/checks/binaries.desc
+++ b/checks/binaries.desc
@@ -350,17 +350,6 @@ Info: This package provides an OCaml bytecode executable linked with a
special care. Their usage is deprecated in favour of shared libraries
for C stubs (dll*.so).
-Tag: hardening-no-stackprotector
-Severity: normal
-Certainty: wild-guess
-Info: This package provides an ELF binary that lacks the stack protector
- function <tt>__stack_chk_fail</tt>. Either there are no character arrays used
- on the stack of any routines, or the package was not built with the
- default Debian compiler flags defined by <tt>dpkg-buildflags</tt>. If built
- using <tt>dpkg-buildflags</tt> directly, be sure to import <tt>CFLAGS</tt>
- and/or <tt>CXXFLAGS</tt>.
-Ref: https://wiki.debian.org/Hardening
-
Tag: hardening-no-fortify-functions
Severity: normal
Certainty: wild-guess
diff --git a/debian/changelog b/debian/changelog
index 641cfef..c5f2859 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -2,12 +2,13 @@ lintian (2.5.48) UNRELEASED; urgency=low
XXX: generate tag summary with private/generate-tag-summary
- * checks/binaries.pm:
+ * checks/binaries.{desc,pm}:
+ [NT] Rewrite/embed the necessary bits from hardening-check to
implement the default hardening-no-* checks directly in lintian.
This is because hardening-check appears to be losing its
"home" with the coming removal of hardening-wrapper and
hardening-includes.
+ + [JW] Remove the hardening-no-stackprotector tag.
* checks/debhelper.pm:
+ [JW] Ignore comments in debian/rules.
+ [JW] Fix parsing rule targets in lines containing multiple colons.
@@ -52,6 +53,8 @@ lintian (2.5.48) UNRELEASED; urgency=low
+ [NT] Removed - we no longer support the stackprotector tag.
* profiles/debian/ftp-master-auto-reject.profile:
+ [JW] Refresh against current rule set.
+ * profiles/debian/main.profile:
+ + [JW] Stop disabling the hardening-no-stackprotector tag.
* t/scripts/spellintian.t:
+ [JW] Relicense as GPLv2+, like the rest of Lintian.
diff --git a/private/generate-profiles.pl b/private/generate-profiles.pl
index c61c78b..78fb6af 100755
--- a/private/generate-profiles.pl
+++ b/private/generate-profiles.pl
@@ -46,7 +46,6 @@ generate_profile(
{
'Extends' => 'debian/ftp-master-auto-reject',
'Enable-Tags-From-Check' => \@checks,
- 'Disable-Tags' => ['hardening-no-stackprotector'],
});
generate_profile(
diff --git a/profiles/debian/main.profile b/profiles/debian/main.profile
index 6476de2..8cc7ce9 100644
--- a/profiles/debian/main.profile
+++ b/profiles/debian/main.profile
@@ -10,5 +10,4 @@ Enable-Tags-From-Check: apache2, application-not-library, automake, binaries,
po-debconf, rules, scripts, shared-libs, source-copyright, standards-version,
symlinks, systemd, testsuite, upstream-metadata, usrmerge, version-substvars,
watch-file
-Disable-Tags: hardening-no-stackprotector
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/lintian/lintian.git
Reply to: