[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Mass rebuild for Fedora 12



On Tue, Jul 21, 2009 at 10:39:35AM +0200, Ondřej Vašík wrote:
> Bill Nottingham wrote:
> > Fedora Release Enginerering is going to be starting a mass rebuild this
> > Thursday, July 28th, for the following Fedora 12 features:
> > 	- XZ RPM Payloads
> > 	- x86 Architecture Support
> 
> I'm a bit aware of quite recent change in FORTIFY_SOURCES - which added
> some checks to prevent buffer overflows. It caused (many) testsuite
> failures in tar and sigabrting TCL's (and I'm sure some more). Source
> code was almost without change, compiled just fine, but application was
> later SIGABRTing. There is a lot of applications without testsuite
> coverage, so they likely just compile well and rpm will be tagged. Later
> it would mean troubles for users (and potentially unstable situation) as
> the response time of some Fedora maintainers is quite high.

See http://gcc.gnu.org/ml/gcc-patches/2009-07/msg01136.html
Due to popular demand, constructs similar to flexible array members in
unions at the end of structures are allowed again for str*/stp* with
-D_FORTIFY_SOURCE=2, will be in the next rawhide build (today or
tomorrow).

> I guess that gcc warning should be changed to error before that rebuild:
> FILE:LINE: warning: call to __builtin___strcpy_chk will always overflow
> destination buffer

It shouldn't be an error, this warning (rarely) has false positives and
warns even about code that is never executed.  That doesn't mean we
shouldn't be grepping build logs for those warnings and letting maintainers
know that they should analyse them (a job for rpmdiff or similar).

	Jakub


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]