Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 879625

Summary: app-antivirus/clamav: possible configure breakage with Clang 16
Product: Gentoo Linux Reporter: Matt Jolly <kangie>
Component: Current packagesAssignee: Antivirus Team <antivirus>
Status: CONFIRMED ---    
Severity: normal CC: kangie, mjo, proxy-maint
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: All   
See Also: https://bugs.gentoo.org/show_bug.cgi?id=871252
Whiteboard:
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 906027    
Attachments: clang-14.log
clang-15.log
clang.diff

Description Matt Jolly gentoo-dev 2022-11-04 22:06:12 UTC 
This package has been identified via automation as potentially impacted by upcoming Clang 16 changes.
The following have been identified as potential issues:

[-Werror,-Wimplicit-function-declaration]

[-Werror,-Wimplicit-function-declaration]
error: implicitly declaring library function 'strlcat' with type 'unsigned long (char *, const char *, unsigned long)' [-Werror,-Wimplicit-function-declaration]
error: implicitly declaring library function 'strlcpy' with type 'unsigned long (char *, const char *, unsigned long)' [-Werror,-Wimplicit-function-declaration]
Comment 1 Matt Jolly gentoo-dev 2022-11-04 22:06:13 UTC 
Created attachment 827137 [details]
clang-14.log

build log
Comment 2 Matt Jolly gentoo-dev 2022-11-04 22:06:14 UTC 
Created attachment 827139 [details]
clang-15.log

build log
Comment 3 Matt Jolly gentoo-dev 2022-11-04 22:06:16 UTC 
Created attachment 827141 [details]
clang.diff

build log
Comment 4 Michael Orlitzky gentoo-dev 2022-11-05 01:01:22 UTC 
This fixes the stable branch:

  https://github.com/Cisco-Talos/clamav/pull/747

If for some reason it's not merged before clang-16 hits, I can always add another patch to the Gentoo package.
Comment 5 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-01-05 07:47:30 UTC 
(In reply to Michael Orlitzky from comment #4)
> This fixes the stable branch:
> 
>   https://github.com/Cisco-Talos/clamav/pull/747
> 
> If for some reason it's not merged before clang-16 hits, I can always add
> another patch to the Gentoo package.

Please do - these issues can lead to wrong configure results anyway but I also want to try clean up anything off the bug list that's fixable, as it's soooo long :(
Comment 6 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-02-11 22:50:07 UTC 
Clang 16 is imminent.
Comment 7 Larry the Git Cow gentoo-dev 2023-02-15 22:51:47 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a12c3ed66db1fed82adc8010d05214db44ac31ff

commit a12c3ed66db1fed82adc8010d05214db44ac31ff
Author:     Michael Orlitzky <mjo@gentoo.org>
AuthorDate: 2023-02-15 22:32:11 +0000
Commit:     Michael Orlitzky <mjo@gentoo.org>
CommitDate: 2023-02-15 22:33:55 +0000

    app-antivirus/clamav: add 0.103.8 (CVE-2023-20032, CVE-2023-20052).
    
    Bug: https://bugs.gentoo.org/879625
    Signed-off-by: Michael Orlitzky <mjo@gentoo.org>

 app-antivirus/clamav/Manifest                      |   1 +
 app-antivirus/clamav/clamav-0.103.8.ebuild         | 240 +++++++++++++++++++++
 .../clamav/files/clamav-0.103.8-c-std.patch        | 204 ++++++++++++++++++
 3 files changed, 445 insertions(+)