Re: [Debian-med-packaging] Trying to disable error=format-security for clapack

To: Debian Med Packaging Team <debian-med-packaging@lists.alioth.debian.org>
Cc: Debian Mentors List <debian-mentors@lists.debian.org>
Subject: Re: [Debian-med-packaging] Trying to disable error=format-security for clapack
From: Andreas Tille <andreas@fam-tille.de>
Date: Sat, 21 May 2016 17:53:46 +0200
Message-id: <[🔎] 20160521155346.GR5019@an3as.eu>
In-reply-to: <[🔎] 1463394066.18357.24.camel@gmail.com>
References: <[🔎] 20160516090743.GA31593@an3as.eu> <[🔎] 13220075.4521102.1463390070094.JavaMail.yahoo@mail.yahoo.com> <[🔎] 1463392922.18357.21.camel@gmail.com> <[🔎] 2114308793.4727773.1463393789155.JavaMail.yahoo@mail.yahoo.com> <[🔎] 1463394066.18357.24.camel@gmail.com>

Hi again,

after the build issues in clapack[1] were solved and I was even able to
create shared libraries I wonder how I can properly set a sensible
SONAME.  I tried to do this via SET_TARGET_PROPERTIES but failed.

Another question is how I could link against the Debian packaged f2c
rather than building the one that comes with clapack upstream.

Any help would be welcome

    Andreas.

[1] https://anonscm.debian.org/git/debian-science/packages/clapack.git

On Mon, May 16, 2016 at 12:21:06PM +0200, Gert Wollny wrote:
> Am Montag, den 16.05.2016, 10:16 +0000 schrieb Gianfranco Costamagna:
> > Hi Gert!
> > 
> > > 
> > > I think, since in this case the (empty) format string passed to the
> > > printf call is not user generated there is no security problem to
> > > be exploited.
> > 
> > yes, sure, but disabling this flag has a nasty side-effect, it is
> > disabled in the *whole* build, possibly
> > hiding more serious issues somewhere else.
> 
> Of course, that's why I gave the #pragma based disabling that can be
> fitted tightly to the offending code. 
> 
> Best, 
> Gert 
> 
> 
> 

-- 
http://fam-tille.de

Reply to:

Follow-Ups:
- Re: [Debian-med-packaging] Trying to disable error=format-security for clapack
  - From: Gianfranco Costamagna <costamagnagianfranco@yahoo.it>

References:
- Trying to disable error=format-security for clapack
  - From: Andreas Tille <andreas@an3as.eu>
- Re: Trying to disable error=format-security for clapack
  - From: Gianfranco Costamagna <locutusofborg@debian.org>
- Re: [Debian-med-packaging] Trying to disable error=format-security for clapack
  - From: Gert Wollny <gw.fossdev@gmail.com>
- Re: [Debian-med-packaging] Trying to disable error=format-security for clapack
  - From: Gianfranco Costamagna <locutusofborg@debian.org>
- Re: [Debian-med-packaging] Trying to disable error=format-security for clapack
  - From: Gert Wollny <gw.fossdev@gmail.com>

Prev by Date: Re: cdist: TeX in sid
Next by Date: Bug#820704: RFS: subuser/0.5.6-3 [ITP]
Previous by thread: Re: [Debian-med-packaging] Trying to disable error=format-security for clapack
Next by thread: Re: [Debian-med-packaging] Trying to disable error=format-security for clapack
Index(es):
- Date
- Thread