Commit 2bb6f5e8 authored by Federico Vaga's avatar Federico Vaga

bld: add flawfinder check on tools

Signed-off-by: Federico Vaga's avatarFederico Vaga <federico.vaga@cern.ch>
parent 2fbe1809
...@@ -26,6 +26,13 @@ cppcheck: ...@@ -26,6 +26,13 @@ cppcheck:
script: script:
- make -C software cppcheck - make -C software cppcheck
flawfinder:
stage: static-analysis
image:
name: gitlab-registry.cern.ch/coht/common-containers/static-analysis:latest
script:
- make -C software/tools flawfinder
documentation: documentation:
stage: build stage: build
image: image:
......
...@@ -11,6 +11,11 @@ Changelog ...@@ -11,6 +11,11 @@ Changelog
Added Added
----- -----
- hdl: configurable auto byte swap in hardware, useful for SVEC to reduce software complexity - hdl: configurable auto byte swap in hardware, useful for SVEC to reduce software complexity
- bld: flawfinder check on software tools
Fixed
-----
- security fixes detected by flawfinder
5.0.4 - 2021-07-09 5.0.4 - 2021-07-09
================== ==================
......
...@@ -19,6 +19,7 @@ CFLAGS += -I../kernel -Wno-trigraphs -Wall -Werror -ggdb -O2 $(EXTRACFLAGS) ...@@ -19,6 +19,7 @@ CFLAGS += -I../kernel -Wno-trigraphs -Wall -Werror -ggdb -O2 $(EXTRACFLAGS)
CFLAGS += -DGIT_VERSION="\"$(GIT_VERSION)\"" CFLAGS += -DGIT_VERSION="\"$(GIT_VERSION)\""
CPPCHECK ?= cppcheck CPPCHECK ?= cppcheck
FLAWFINDER ?= flawfinder
CC ?= $(CROSS_COMPILE)gcc CC ?= $(CROSS_COMPILE)gcc
progs := fau-trg-config progs := fau-trg-config
...@@ -45,3 +46,6 @@ install: ...@@ -45,3 +46,6 @@ install:
cppcheck: cppcheck:
$(CPPCHECK) -q -I. --suppress=missingIncludeSystem --enable=all *.c *.h --error-exitcode=1 $(CPPCHECK) -q -I. --suppress=missingIncludeSystem --enable=all *.c *.h --error-exitcode=1
flawfinder:
$(FLAWFINDER) -SQDC --error-level=4 .
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment