[guardian-dev] using -Werror=format-security
Hans-Christoph Steiner
hans at guardianproject.info
Wed Dec 4 10:20:51 EST 2013
Good idea, its available in gcc, which the NDK uses as its main compiler.
Donno about clang/llvm, but we're not supporting that anyway.
It needs to be included with -Wformat, so the combo is -Wformat
-Werror=format-security
.hc
On 12/04/2013 10:04 AM, Abel Luck wrote:
> -Werror=format-security
> "Once this flag is enabled, GCC will refuse to compile code that could be
> vulnerable to a string format security flaw."
>
> We should investigate adding this flag to our native builds, as well as other hardening
> flags. Not sure if it is available in the NDK though.
>
> ~abel
> _______________________________________________
> Guardian-dev mailing list
>
> Post: Guardian-dev at lists.mayfirst.org
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>
> To Unsubscribe
> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
> Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/hans%40guardianproject.info
>
> You are subscribed as: hans at guardianproject.info
>
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
More information about the Guardian-dev
mailing list