[U-Boot] disable security warning flags when possible

Message ID	1303754800-14317-1-git-send-email-vapier@gentoo.org
State	Accepted
Commit	6262e4e74e2cdb9f231dc71c9893d4a4bd1e88df
Delegated to:	Wolfgang Denk
Headers	show Return-Path: <u-boot-bounces@lists.denx.de> From: Mike Frysinger <vapier@gentoo.org> To: u-boot@lists.denx.de Date: Mon, 25 Apr 2011 14:06:40 -0400 Message-Id: <1303754800-14317-1-git-send-email-vapier@gentoo.org> Subject: [U-Boot] [PATCH] disable security warning flags when possible Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: u-boot-bounces@lists.denx.de Errors-To: u-boot-bounces@lists.denx.de

Message ID

1303754800-14317-1-git-send-email-vapier@gentoo.org

State

Accepted

Commit

6262e4e74e2cdb9f231dc71c9893d4a4bd1e88df

Delegated to:

Wolfgang Denk

Headers

show

Return-Path: <u-boot-bounces@lists.denx.de>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Received: from theia.denx.de (theia.denx.de [85.214.87.163])
	by ozlabs.org (Postfix) with ESMTP id 6272EB6F2B
	for <incoming@patchwork.ozlabs.org>;
	Tue, 26 Apr 2011 04:06:43 +1000 (EST)
Received: from localhost (localhost [127.0.0.1])
	by theia.denx.de (Postfix) with ESMTP id 137112816A;
	Mon, 25 Apr 2011 20:06:42 +0200 (CEST)
X-Virus-Scanned: Debian amavisd-new at theia.denx.de
Received: from theia.denx.de ([127.0.0.1])
	by localhost (theia.denx.de [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id P72LM7qMgMiZ; Mon, 25 Apr 2011 20:06:41 +0200 (CEST)
Received: from theia.denx.de (localhost [127.0.0.1])
	by theia.denx.de (Postfix) with ESMTP id B9FC82816B;
	Mon, 25 Apr 2011 20:06:39 +0200 (CEST)
Received: from localhost (localhost [127.0.0.1])
	by theia.denx.de (Postfix) with ESMTP id CE4B62816B
	for <u-boot@lists.denx.de>; Mon, 25 Apr 2011 20:06:37 +0200 (CEST)
X-Virus-Scanned: Debian amavisd-new at theia.denx.de
Received: from theia.denx.de ([127.0.0.1])
	by localhost (theia.denx.de [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id kyyPI17ECzNB for <u-boot@lists.denx.de>;
	Mon, 25 Apr 2011 20:06:37 +0200 (CEST)
X-policyd-weight: NOT_IN_SBL_XBL_SPAMHAUS=-1.5 NOT_IN_SPAMCOP=-1.5
	NOT_IN_BL_NJABL=-1.5 (only DNSBL check requested)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by theia.denx.de (Postfix) with ESMTPS id 04B552816A
	for <u-boot@lists.denx.de>; Mon, 25 Apr 2011 20:06:35 +0200 (CEST)
Received: from localhost.localdomain (localhost [127.0.0.1])
	by smtp.gentoo.org (Postfix) with ESMTP id 789401B4039;
	Mon, 25 Apr 2011 18:06:33 +0000 (UTC)
From: Mike Frysinger <vapier@gentoo.org>
To: u-boot@lists.denx.de
Date: Mon, 25 Apr 2011 14:06:40 -0400
Message-Id: <1303754800-14317-1-git-send-email-vapier@gentoo.org>
X-Mailer: git-send-email 1.7.5.rc1
Subject: [U-Boot] [PATCH] disable security warning flags when possible
X-BeenThere: u-boot@lists.denx.de
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: U-Boot discussion <u-boot.lists.denx.de>
List-Unsubscribe: <http://lists.denx.de/mailman/listinfo/u-boot>,
	<mailto:u-boot-request@lists.denx.de?subject=unsubscribe>
List-Archive: <http://lists.denx.de/pipermail/u-boot>
List-Post: <mailto:u-boot@lists.denx.de>
List-Help: <mailto:u-boot-request@lists.denx.de?subject=help>
List-Subscribe: <http://lists.denx.de/mailman/listinfo/u-boot>,
	<mailto:u-boot-request@lists.denx.de?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: u-boot-bounces@lists.denx.de
Errors-To: u-boot-bounces@lists.denx.de

Commit Message

Mike Frysinger April 25, 2011, 6:06 p.m. UTC

Some toolchains enable security warning flags by default, but these don't
really make sense in the u-boot world.  Such as forcing changes like:
	-printf(foo);
	+printf("%s", foo);

So disable the flags when the compiler supports them.  Linux has already
merged a similar change in their build system.

Signed-off-by: Mike Frysinger <vapier@gentoo.org>
---
 config.mk |    4 ++++
 1 files changed, 4 insertions(+), 0 deletions(-)

Comments

Joakim Tjernlund April 25, 2011, 7:16 p.m. UTC | #1

Mike Frysinger <vapier@gentoo.org> wrote on 2011/04/25 20:06:40:
>
> Some toolchains enable security warning flags by default, but these don't
> really make sense in the u-boot world.  Such as forcing changes like:
>    -printf(foo);
>    +printf("%s", foo);
>
> So disable the flags when the compiler supports them.  Linux has already
> merged a similar change in their build system.
>
> Signed-off-by: Mike Frysinger <vapier@gentoo.org>
> ---
>  config.mk |    4 ++++
>  1 files changed, 4 insertions(+), 0 deletions(-)
>
> diff --git a/config.mk b/config.mk
> index fa46ff1..97d2631 100644
> --- a/config.mk
> +++ b/config.mk
> @@ -191,6 +191,10 @@ CFLAGS := $(CPPFLAGS) -Wall -Wstrict-prototypes
>  endif
>
>  CFLAGS += $(call cc-option,-fno-stack-protector)
> +# Some toolchains enable security related warning flags by default,
> +# but they don't make much sense in the u-boot world, so disable them.
> +CFLAGS += $(call cc-option,-Wno-format-nonliteral)
> +CFLAGS += $(call cc-option,-Wno-format-security)

hmm, now we have this warning in the tree:
   miiphyutil.c: In function 'miiphy_register':
   miiphyutil.c:144: warning: format not a string literal and no format arguments
which is a
	sprintf(new_dev->name, name);

This warning goes away with your patch and I not sure that is a good thing. Keeping just:
   CFLAGS += $(call cc-option,-Wno-format-nonliteral)
makes the warning stay.

 Jocke

PS.
gcc 3.4.6 also complains:
  miiphyutil.c: In function `miiphy_read':
  miiphyutil.c:304: warning: comparison is always false due to limited range of data type
which looks like a real one. Strange gcc 4.4.5 has lost that one.

Mike Frysinger April 25, 2011, 7:30 p.m. UTC | #2

On Mon, Apr 25, 2011 at 15:16, Joakim Tjernlund wrote:
> Mike Frysinger wrote on 2011/04/25 20:06:40:
>> Some toolchains enable security warning flags by default, but these don't
>> really make sense in the u-boot world.  Such as forcing changes like:
>>    -printf(foo);
>>    +printf("%s", foo);
>>
>> So disable the flags when the compiler supports them.  Linux has already
>> merged a similar change in their build system.
>>
>> Signed-off-by: Mike Frysinger <vapier@gentoo.org>
>> ---
>>  config.mk |    4 ++++
>>  1 files changed, 4 insertions(+), 0 deletions(-)
>>
>> diff --git a/config.mk b/config.mk
>> index fa46ff1..97d2631 100644
>> --- a/config.mk
>> +++ b/config.mk
>> @@ -191,6 +191,10 @@ CFLAGS := $(CPPFLAGS) -Wall -Wstrict-prototypes
>>  endif
>>
>>  CFLAGS += $(call cc-option,-fno-stack-protector)
>> +# Some toolchains enable security related warning flags by default,
>> +# but they don't make much sense in the u-boot world, so disable them.
>> +CFLAGS += $(call cc-option,-Wno-format-nonliteral)
>> +CFLAGS += $(call cc-option,-Wno-format-security)
>
> hmm, now we have this warning in the tree:
>   miiphyutil.c: In function 'miiphy_register':
>   miiphyutil.c:144: warning: format not a string literal and no format arguments
> which is a
>        sprintf(new_dev->name, name);
>
> This warning goes away with your patch and I not sure that is a good thing. Keeping just:
>   CFLAGS += $(call cc-option,-Wno-format-nonliteral)
> makes the warning stay.

i dont think the existing code is buggy.  certainly changing it to
strcpy(new_dev->name, name) is fine, but again doing
sprintf(new_dev->name, "%s", name) is wrong.

> gcc 3.4.6 also complains:
>  miiphyutil.c: In function `miiphy_read':
>  miiphyutil.c:304: warning: comparison is always false due to limited range of data type
> which looks like a real one. Strange gcc 4.4.5 has lost that one.

this is -Wtype-limits now which makes sense to me ... this shouldnt be
under the "security" umbrella

CFLAGS += $(call cc-option,-Wtype-limits)
-mike

Wolfgang Denk July 26, 2011, 2:35 p.m. UTC | #3

Dear Mike Frysinger,

In message <1303754800-14317-1-git-send-email-vapier@gentoo.org> you wrote:
> Some toolchains enable security warning flags by default, but these don't
> really make sense in the u-boot world.  Such as forcing changes like:
> 	-printf(foo);
> 	+printf("%s", foo);
> 
> So disable the flags when the compiler supports them.  Linux has already
> merged a similar change in their build system.
> 
> Signed-off-by: Mike Frysinger <vapier@gentoo.org>
> ---
>  config.mk |    4 ++++
>  1 files changed, 4 insertions(+), 0 deletions(-)

Applied, thanks.

Best regards,

Wolfgang Denk

diff --git a/config.mk b/config.mk
index fa46ff1..97d2631 100644
--- a/config.mk
+++ b/config.mk
@@ -191,6 +191,10 @@  CFLAGS := $(CPPFLAGS) -Wall -Wstrict-prototypes
 endif
 
 CFLAGS += $(call cc-option,-fno-stack-protector)
+# Some toolchains enable security related warning flags by default,
+# but they don't make much sense in the u-boot world, so disable them.
+CFLAGS += $(call cc-option,-Wno-format-nonliteral)
+CFLAGS += $(call cc-option,-Wno-format-security)
 
 # $(CPPFLAGS) sets -g, which causes gcc to pass a suitable -g<format>
 # option to the assembler.

[U-Boot] disable security warning flags when possible

Commit Message

Comments

Patch