Bug#643412: jack-keyboard: FTBFS: jack-keyboard.c:261:2: error: format not a string literal and no format arguments [-Werror=format-security]

Didier Raboud odyx at debian.org
Tue Sep 27 12:31:25 UTC 2011


Source: jack-keyboard
Version: 2.6-1
Severity: serious
Tags: wheezy sid
User: debian-qa at lists.debian.org
Usertags: qa-ftbfs-20110923 qa-ftbfs hardening-format-security hardening
Justification: FTBFS on amd64

Hi,

During a rebuild of all packages in sid, your package failed to build on
amd64.

Relevant part:
> /usr/bin/cc  -DHAVE_JACK=1 -DHAVE_X11=1 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -D_FORTIFY_SOURCE=2 -Wformat -Wformat-security -Werror=format-security -Wall -I/usr/include/gtk-2.0 -I/usr/include/freetype2 -I/usr/include/glib-2.0 -I/usr/lib/glib-2.0/include -I/usr/include/gdk-pixbuf-2.0 -I/usr/lib/x86_64-linux-gnu/gtk-2.0/include -I/usr/include/cairo -I/usr/include/pango-1.0 -I/usr/include/atk-1.0    -o CMakeFiles/jack-keyboard.dir/src/jack-keyboard.c.o   -c /build/jack-keyboard-hYgQDt/jack-keyboard-2.6/src/jack-keyboard.c
> /build/jack-keyboard-hYgQDt/jack-keyboard-2.6/src/jack-keyboard.c: In function 'warning_async':
> /build/jack-keyboard-hYgQDt/jack-keyboard-2.6/src/jack-keyboard.c:261:2: error: format not a string literal and no format arguments [-Werror=format-security]
> /build/jack-keyboard-hYgQDt/jack-keyboard-2.6/src/jack-keyboard.c: In function 'init_gtk_1':
> /build/jack-keyboard-hYgQDt/jack-keyboard-2.6/src/jack-keyboard.c:1545:3: warning: reading through null pointer (argument 3) [-Wformat]
> /build/jack-keyboard-hYgQDt/jack-keyboard-2.6/src/jack-keyboard.c: In function 'log_handler':
> /build/jack-keyboard-hYgQDt/jack-keyboard-2.6/src/jack-keyboard.c:1683:4: error: format not a string literal and no format arguments [-Werror=format-security]
> cc1: some warnings being treated as errors
> 
> make[3]: *** [CMakeFiles/jack-keyboard.dir/src/jack-keyboard.c.o] Error 1

The full build log is available from:
   http://people.debian.org/~lucas/logs/2011/09/23/jack-keyboard_2.6-1_lsid64.buildlog

This happened because since dpkg 1.16.0 [0], hardening flags are enabled 
under various conditions.

[0] http://lists.debian.org/debian-devel-announce/2011/09/msg00001.html

A list of current common problems and possible solutions is available at 
http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute!

About the archive rebuild: The rebuild was done on about 50 AMD64 nodes
of the Grid'5000 platform, using a clean chroot.  Internet was not
accessible from the build systems.





More information about the pkg-multimedia-maintainers mailing list