Hello community, here is the log from the commit of package post-build-checks checked in at Mon Oct 6 18:04:59 CEST 2008. -------- --- post-build-checks/post-build-checks.changes 2008-09-30 11:24:58.000000000 +0200 +++ /mounts/work_src_done/STABLE/post-build-checks/post-build-checks.changes 2008-10-06 17:54:01.000000000 +0200 @@ -1,0 +2,6 @@ +Mon Oct 6 17:53:46 CEST 2008 - meissner@suse.de + +- added checks for newer glibcs destination buffer overflow + warning. + +------------------------------------------------------------------- calling whatdependson for head-i586 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ post-build-checks.spec ++++++ --- /var/tmp/diff_new_pack.J26731/_old 2008-10-06 18:03:25.000000000 +0200 +++ /var/tmp/diff_new_pack.J26731/_new 2008-10-06 18:03:25.000000000 +0200 @@ -24,7 +24,7 @@ AutoReqProv: on Summary: post checks for build after rpms have been created Version: 1.0 -Release: 44 +Release: 45 PreReq: aaa_base permissions sed Source0: %{name}-%{version}.tar.bz2 BuildArch: noarch @@ -73,6 +73,9 @@ /usr/lib/build %changelog +* Mon Oct 06 2008 meissner@suse.de +- added checks for newer glibcs destination buffer overflow + warning. * Tue Sep 30 2008 ro@suse.de - make uname.sh more robust * Tue Sep 23 2008 dmueller@suse.de ++++++ post-build-checks-1.0.tar.bz2 ++++++ diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/post-build-checks-1.0/checks-data/check_gcc_output new/post-build-checks-1.0/checks-data/check_gcc_output --- old/post-build-checks-1.0/checks-data/check_gcc_output 2008-09-23 12:17:17.000000000 +0200 +++ new/post-build-checks-1.0/checks-data/check_gcc_output 2008-10-06 16:43:34.000000000 +0200 @@ -26,6 +26,7 @@ 'warning:.*missing sentinel in function call' => "missing-sentinel", 'warning:.*call to .* will always overflow destination buffer' => "bufferoverflow", 'warning:.*call to .*strncat.* might overflow destination buffer' => "bufferoverflowstrncat", + 'warning:.*called with bigger.*destination buffer' => "destbufferoverflow", 'warning:.*is used uninitialized in this function' => "uninitialized-variable", 'warning:.*too few arguments for format' => "missing-arg-for-fmt-string", "warning:.*implicit .*\b(recv|recvfrom|read|pread|pread64|readlink|getwd|getcwd|fgets|fgets_unlock|strncat|strcat|memmove|memcpy|mempcpy|strpcpy|strcpy|strncpy|printf|sprintf|snprintf|vprintf|vsprintf|vsnprintf|fprintf|vfprintf|gets|memset|bzero|bcopy|strlen|strcmp|wcscpy|wcpcpy|wcsncpy|wcpncpy|wcscat|swprintf|vswprintf|fgetws|wcsrtombs|mbsrtowcs|wcrtomb|wcsnrtombs|ptsname|realpath|wctomb|mbstowcs|ttyname_r|getlogin_r|getgroups|confstr|gethostname|getdomainname|)\b" => "implicit-fortify-decl", @@ -45,6 +46,8 @@ "bufferoverflowstrncat" => "Statement might be overflowing a buffer in strncat. Common mistake:\n" . "BAD: strncat(buffer,charptr,sizeof(buffer)) is wrong, it takes the left over size as 3rd argument\n" . "GOOD: strncat(buffer,charptr,sizeof(buffer)-strlen(buffer)-1)\n", + "destbufferoverflow" => "Statement might potentially overflow a destination buffer, where a size larger\n" . + " than the actual buffer was specified\n", "missing-arg-for-fmt-string" => "Function call is passing too few arguments to a *printf function.\n", "uninitialized-variable" => "Program is using uninitialized variables.\nNote the difference between \"is used\" and \"may be used\"", "format-security" => "Function call uses possibly exploitable format strings\n", @@ -71,6 +74,7 @@ "no-return-in-nonvoid-function" => 'E', "missing-sentinel" => 'E', "bufferoverflow" => 'E', + "destbufferoverflow" => 'E', "memset-with-zero-length" => 'W', "missing-arg-for-fmt-string" => 'W', "implicit-fortify-decl" => 'W', ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org