diff options
author | Petr Štetiar <ynezz@true.cz> | 2019-12-07 22:45:59 +0100 |
---|---|---|
committer | Petr Štetiar <ynezz@true.cz> | 2019-12-07 23:40:02 +0100 |
commit | 66264ed9ec9e13321798061782b255ecb4dd64c2 (patch) | |
tree | ccd7e17a12ef8d21e0cc7009dd79b78ca8dacb8b | |
parent | cca6f105fae201b8cb91c4551a3460028d388a35 (diff) | |
download | uci-66264ed9ec9e13321798061782b255ecb4dd64c2.tar.gz |
cmake: add more hardening compiler flags
In order to spot possible issues with direct impact on security during
QA on CI (GCC version 6 and higher).
Ref: https://developers.redhat.com/blog/2018/03/21/compiler-and-linker-flags-gcc/
Signed-off-by: Petr Štetiar <ynezz@true.cz>
-rw-r--r-- | CMakeLists.txt | 11 |
1 files changed, 9 insertions, 2 deletions
diff --git a/CMakeLists.txt b/CMakeLists.txt index 92adf4a..da4ac68 100644 --- a/CMakeLists.txt +++ b/CMakeLists.txt @@ -3,8 +3,15 @@ cmake_minimum_required(VERSION 2.6) PROJECT(uci C) SET(CMAKE_SHARED_LIBRARY_LINK_C_FLAGS "") -ADD_DEFINITIONS(-Os -Wall -Werror -Wextra --std=gnu99 -g3 -I. -DUCI_PREFIX="${CMAKE_INSTALL_PREFIX}") -ADD_DEFINITIONS(-Wno-unused-parameter) + +ADD_DEFINITIONS(-Wall -Werror) +IF(CMAKE_C_COMPILER_VERSION VERSION_GREATER 6) + ADD_DEFINITIONS(-Wextra -Werror=implicit-function-declaration) + ADD_DEFINITIONS(-Wformat -Werror=format-security -Werror=format-nonliteral) +ENDIF() +ADD_DEFINITIONS(-Os -std=gnu99 -g3 -Wmissing-declarations -Wno-unused-parameter) +ADD_DEFINITIONS(-DUCI_PREFIX="${CMAKE_INSTALL_PREFIX}") + OPTION(UCI_DEBUG "debugging support" OFF) OPTION(UCI_DEBUG_TYPECAST "typecast debugging support" OFF) |