845f41a85c
This patch adds compiler flags to improve the security of STX code.
Flags added:
Format string vulnerabilities: CFLAGS="-Wformat -Wformat-security"
Compiler will treat string format warnings as errors,
so at compiling level, buffer overflow is avoided.
Story: 2004380
Task: 28806
Signed-off-by: Luis Botello <luis.botello.ortega@intel.com>
Reviewed-by: Erich Cordoba <erich.cordoba.malibran@intel.com>
Victor Rodriguez <vm.rod25@gmail.com>
Sugested-by: Victor Rodriguez <vm.rod25@gmail.com>
Erich Cordoba <erich.cordoba.malibran@intel.com>
Change-Id: Ia1ffaf18e7050d9099b80f9023b2bf255b4750fa
31 lines
952 B
Makefile
31 lines
952 B
Makefile
SRCS = snmpAuditPlugin.c
|
|
|
|
OBJS = $(SRCS:.c=.o)
|
|
LDLIBS = -lfmcommon -lnetsnmp -lnetsnmpagent -luuid
|
|
INCLUDES += -I./
|
|
CCFLAGS = -fPIC -g -O2 -Wall -Werror -Wformat -Wformat-security
|
|
LIBCGTSAGENT_SO := libsnmpAuditPlugin.so
|
|
MAJOR ?= 1
|
|
MINOR ?= 0
|
|
PATCH ?= 0
|
|
DESTDIR ?= /usr/lib64
|
|
|
|
build: lib
|
|
|
|
.c.o:
|
|
$(CXX) $(CCFLAGS) $(INCLUDES) -c $< -o $@
|
|
|
|
lib: $(OBJS)
|
|
$(CXX) $(OBJS) $(LDLIBS) -o $(LIBCGTSAGENT_SO).$(MAJOR).$(MINOR).$(PATCH) -shared
|
|
ln -sf $(LIBCGTSAGENT_SO).$(MAJOR).$(MINOR).$(PATCH) $(LIBCGTSAGENT_SO).$(MAJOR)
|
|
ln -sf $(LIBCGTSAGENT_SO).$(MAJOR).$(MINOR).$(PATCH) $(LIBCGTSAGENT_SO)
|
|
|
|
clean:
|
|
@rm -f $(OBJ) *.o *.so.*
|
|
|
|
install:
|
|
install -m 755 -d $(DESTDIR)$(LIB_DIR)
|
|
install -m 755 $(LIBCGTSAGENT_SO).$(MAJOR).$(MINOR).$(PATCH) $(DESTDIR)$(LIB_DIR)
|
|
ln -s $(LIBCGTSAGENT_SO).$(MAJOR).$(MINOR).$(PATCH) $(DESTDIR)$(LIB_DIR)/$(LIBCGTSAGENT_SO).$(MAJOR)
|
|
ln -s $(LIBCGTSAGENT_SO).$(MAJOR).$(MINOR).$(PATCH) $(DESTDIR)$(LIB_DIR)/$(LIBCGTSAGENT_SO)
|