Re: Advice on a new package

To: "debian-devel-games@lists.debian.org" <debian-devel-games@lists.debian.org>, "debian-mentors@lists.debian.org" <debian-mentors@lists.debian.org>
Subject: Re: Advice on a new package
From: Juhani Numminen <juhaninumminen0@gmail.com>
Date: Thu, 30 Aug 2012 22:33:25 +0300
Message-id: <[🔎] CAA-+ft1aYuOnEgtnEB1FaS0V6xjJ5-aRoMU69j4_X9mAX6NW+w@mail.gmail.com>
In-reply-to: <[🔎] 2611346268526@web23d.yandex.ru>
References: <[🔎] CAA-+ft0VLA2T=UxqUPnzaRGPk88xqPLVE9KkTF64UWm_BWPHSw@mail.gmail.com> <[🔎] 2611346268526@web23d.yandex.ru>

Thanks for your help!

I've filed an ITP bug, it is
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686185
I'd like to package this on Alioth so I asked to get into pkg-games
there (the username is jsonic-guest).

2012/8/29 Boris Pek <Tehnick-8@yandex.ru>:
>> The package has a Lintian warning: W: fortuner:
>> hardening-no-fortify-functions usr/games/fortuner. How should that be
>> treated?
>
> http://wiki.debian.org/Hardening
>
> Note: Lintian can generate false positive here. So you should check it manually.

I can't solve this myself, if you have knowledge of this subject
please take a look.
>From "debuild" output I can see following:

/usr/bin/c++    -g -O2 -fstack-protector --param=ssp-buffer-size=4
-Wformat -Werror=format-security -D_FORTIFY_SOURCE=2
-I/home/juhani/Projektit/fortuner-debian/fortuner-0.4.0/obj-x86_64-linux-gnu/src
-I/usr/include/gtk-3.0 -I/usr/include/pango-1.0
-I/usr/include/gio-unix-2.0 -I/usr/include/atk-1.0
-I/usr/include/cairo -I/usr/include/gdk-pixbuf-2.0
-I/usr/include/freetype2 -I/usr/include/glib-2.0
-I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/pixman-1
-I/usr/include/libpng12    -pthread -o
CMakeFiles/fortuner.dir/gtk_ui.cpp.o -c
/home/juhani/Projektit/fortuner-debian/fortuner-0.4.0/src/gtk_ui.cpp
(that is one of three compilation units)

/usr/bin/c++   -g -O2 -fstack-protector --param=ssp-buffer-size=4
-Wformat -Werror=format-security -D_FORTIFY_SOURCE=2    -Wl,-z,relro
CMakeFiles/fortuner.dir/gtk_ui.cpp.o
CMakeFiles/fortuner.dir/main.cpp.o
CMakeFiles/fortuner.dir/settings.cpp.o  -o ../../bin/fortuner
-rdynamic -lgtk-3 -lgdk-3 -latk-1.0 -lgio-2.0 -lpangocairo-1.0
-lgdk_pixbuf-2.0 -lcairo-gobject -lpango-1.0 -lcairo -lgobject-2.0
-lglib-2.0 -lnotify
(that is linkage process)

Looks like the build flags are already there, even if I'm not using
anything flags-thing in debian/rules. However, I get the following
results:

$ hardening-check debian/fortuner/usr/games/fortuner
debian/fortuner/usr/games/fortuner:
 Position Independent Executable: no, normal executable!
 Stack protected: yes
 Fortify Source functions: no, only unprotected functions found!
 Read-only relocations: yes
 Immediate binding: no, not found!

Adding these lines to debian/rules
2012/8/29 Nathan Owens <ndowens@gmx.us>:
>DPKG_EXPORT_BUILDFLAGS = 1
>include /usr/share/dpkg/buildflags.mk
>
>CFLAGS += -Wextra
did not make any difference.

Juhani Numminen

Reply to:

Follow-Ups:
- Re: Advice on a new package
  - From: Markus Koschany <apo@gambaru.de>

References:
- Advice on a new package
  - From: Juhani Numminen <juhaninumminen0@gmail.com>
- Re: Advice on a new package
  - From: Boris Pek <Tehnick-8@yandex.ru>

Prev by Date: Bug#684106: RFS: ledgersmb/1.3.21-2
Next by Date: Re: Advice on a new package
Previous by thread: Re: Advice on a new package
Next by thread: Re: Advice on a new package
Index(es):
- Date
- Thread