compiler errors with fread/fwrite and fortify source

Kees Cook kees at
Tue Mar 24 16:59:16 GMT 2009

Hi Matthias,

On Tue, Mar 24, 2009 at 11:04:14AM +0100, Matthias Klose wrote:
> Our current practice to fix this in packages is to either turn of -Werror, or
> patch the sources to introduce a dummy variable.  Proposing to remove the
> attribute for fwrite/fwrite_unlocked for jaunty.

I have no objection to this, and discovered the uselessness of unchecked
fclose during my UDS demonstration (i.e. fwrite would succeed, but fclose
would fail).  fwrite warnings without fprintf, fclose, etc warnings is not
sensible, and covering all of those would be way too noisy.


Kees Cook
Ubuntu Security Team

More information about the ubuntu-devel mailing list