cmake: add more hardening compiler flags

In order to spot possible issues with direct impact on security during QA on CI (GCC version 6 and higher). Ref: https://developers.redhat.com/blog/2018/03/21/compiler-and-linker-flags-gcc/ Signed-off-by: Petr Štetiar <ynezz@true.cz>
author: Petr Štetiar <ynezz@true.cz> 2019-12-07 22:45:59 +0100
committer: Petr Štetiar <ynezz@true.cz> 2019-12-07 23:40:02 +0100
commit: 66264ed9ec9e13321798061782b255ecb4dd64c2 (patch)
tree: ccd7e17a12ef8d21e0cc7009dd79b78ca8dacb8b
parent: cca6f105fae201b8cb91c4551a3460028d388a35 (diff)
download: uci-66264ed9ec9e13321798061782b255ecb4dd64c2.tar.gz
1 files changed, 9 insertions, 2 deletions
diff --git a/CMakeLists.txt b/CMakeLists.txt
index 92adf4a..da4ac68 100644
--- a/CMakeLists.txt
+++ b/CMakeLists.txt
@@ -3,8 +3,15 @@ cmake_minimum_required(VERSION 2.6)
 PROJECT(uci C)
 
 SET(CMAKE_SHARED_LIBRARY_LINK_C_FLAGS "")
-ADD_DEFINITIONS(-Os -Wall -Werror -Wextra --std=gnu99 -g3 -I. -DUCI_PREFIX="${CMAKE_INSTALL_PREFIX}")
-ADD_DEFINITIONS(-Wno-unused-parameter)
+
+ADD_DEFINITIONS(-Wall -Werror)
+IF(CMAKE_C_COMPILER_VERSION VERSION_GREATER 6)
+	ADD_DEFINITIONS(-Wextra -Werror=implicit-function-declaration)
+	ADD_DEFINITIONS(-Wformat -Werror=format-security -Werror=format-nonliteral)
+ENDIF()
+ADD_DEFINITIONS(-Os -std=gnu99 -g3 -Wmissing-declarations -Wno-unused-parameter)
+ADD_DEFINITIONS(-DUCI_PREFIX="${CMAKE_INSTALL_PREFIX}")
+
 
 OPTION(UCI_DEBUG "debugging support" OFF)
 OPTION(UCI_DEBUG_TYPECAST "typecast debugging support" OFF)
author	Petr Štetiar <ynezz@true.cz>	2019-12-07 22:45:59 +0100
committer	Petr Štetiar <ynezz@true.cz>	2019-12-07 23:40:02 +0100
commit	66264ed9ec9e13321798061782b255ecb4dd64c2 (patch)
tree	ccd7e17a12ef8d21e0cc7009dd79b78ca8dacb8b
parent	cca6f105fae201b8cb91c4551a3460028d388a35 (diff)
download	uci-66264ed9ec9e13321798061782b255ecb4dd64c2.tar.gz