Detect overwrite of -D_FORTIFY_SOURCE=2 with -U_FORTIFY_SOURCE.

author Simon Ruderich <simon@ruderich.org>

Sun, 27 May 2012 20:53:59 +0000 (22:53 +0200)

committer Simon Ruderich <simon@ruderich.org>

Sun, 27 May 2012 20:53:59 +0000 (22:53 +0200)
author Simon Ruderich <simon@ruderich.org>
Sun, 27 May 2012 20:53:59 +0000 (22:53 +0200)
committer Simon Ruderich <simon@ruderich.org>
Sun, 27 May 2012 20:53:59 +0000 (22:53 +0200)
diff --git a/bin/blhc b/bin/blhc

index 51fc4e14d62e1849d09ab06e171aaf0544d446ee..666a151d847a6567687bcbd3d5394f97d754706a 100755 (executable)
--- a/bin/blhc
+++ b/bin/blhc
@@ -176,6 +176,7 @@ my @def_cppflags_fortify = (
  );
  my @def_cppflags_fortify_bad = (
      # These flags may overwrite -D_FORTIFY_SOURCE=2.
+    '-U_FORTIFY_SOURCE',
      '-D_FORTIFY_SOURCE=0',
      '-D_FORTIFY_SOURCE=1',
  );
diff --git a/t/logs/bad-cppflags b/t/logs/bad-cppflags

index 098cb968ef27df9146bf00f41612b57396e1a45d..2ea808a298468634a7acf6431058edef92f7e4ce 100644 (file)
--- a/t/logs/bad-cppflags
+++ b/t/logs/bad-cppflags
@@ -15,3 +15,7 @@ gcc -D_FORTIFY_SOURCE=2 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wfor
  gcc -D_FORTIFY_SOURCE=2 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=0 -c test-d.c
  gcc -D_FORTIFY_SOURCE=0 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=2 -c test-e.c
  gcc -D_FORTIFY_SOURCE=1 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=2 -c test-f.c
+
+gcc -U_FORTIFY_SOURCE   -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -c test-g.c
+gcc -U_FORTIFY_SOURCE   -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=2 -c test-h.c
+gcc -D_FORTIFY_SOURCE=2 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -U_FORTIFY_SOURCE -c test-i.c
diff --git a/t/tests.t b/t/tests.t

index 3bbd62993f92e6d34c7a1eae88871205d99e75b9..7b88c910329c3fdc4eef04e4b107994c1fcb835d 100644 (file)
--- a/t/tests.t
+++ b/t/tests.t
@@ -517,6 +517,9 @@ CPPFLAGS missing (-D_FORTIFY_SOURCE=2): gcc -D_FORTIFY_SOURCE=2 -g -O2 -fstack-p
  CPPFLAGS missing (-D_FORTIFY_SOURCE=2): gcc -D_FORTIFY_SOURCE=2 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=0 -c test-d.c
  CPPFLAGS missing (-D_FORTIFY_SOURCE=2): gcc -D_FORTIFY_SOURCE=0 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=2 -c test-e.c
  CPPFLAGS missing (-D_FORTIFY_SOURCE=2): gcc -D_FORTIFY_SOURCE=1 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=2 -c test-f.c
+CPPFLAGS missing (-D_FORTIFY_SOURCE=2): gcc -U_FORTIFY_SOURCE   -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -c test-g.c
+CPPFLAGS missing (-D_FORTIFY_SOURCE=2): gcc -U_FORTIFY_SOURCE   -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=2 -c test-h.c
+CPPFLAGS missing (-D_FORTIFY_SOURCE=2): gcc -D_FORTIFY_SOURCE=2 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -U_FORTIFY_SOURCE -c test-i.c
  ';
  
  is_blhc 'bad-cppflags', '--ignore-flag -D_FORTIFY_SOURCE=2', 0,
author	Simon Ruderich <simon@ruderich.org>
	Sun, 27 May 2012 20:53:59 +0000 (22:53 +0200)
committer	Simon Ruderich <simon@ruderich.org>
	Sun, 27 May 2012 20:53:59 +0000 (22:53 +0200)
bin/blhc		patch \| blob \| history
t/logs/bad-cppflags		patch \| blob \| history
t/tests.t		patch \| blob \| history