atmos/fortify-headers
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
90 Commits 2 Branches 11 Tags 159 KiB
9ded4dde0c
Commit Graph

90 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
sin
9ded4dde0c Update README 2015-03-06 16:42:15 +00:00
sin
ead32d6320 Fix some checks in wchar.h 
Some of these functions allow the destination pointer to be NULL.
Do not trap in that case as nothing will be written to the destination
buffer.
 2015-03-06 12:39:11 +00:00
sin
9b128ed538 Fix mbsnrtowcs() and wcsnrtombs() checks 2015-03-05 18:21:52 +00:00
sin
c51977cfcc Fix wcsrtombs() check 2015-03-04 20:16:44 +00:00
sin
4ddbe16d88 Fix mbsrtowcs() check 2015-03-04 19:58:48 +00:00
sin
7392bcaef8 Handle early termination in wcsnrtombs() and mbsnrtowcs() 2015-03-04 17:10:50 +00:00
sin
3d237352de Add wctomb() check 2015-03-04 13:12:58 +00:00
sin
911f402e94 Add wcstombs() check 2015-03-04 13:09:31 +00:00
sin
3532ee2caa Add wcsnrtombs() and wcsrtombs() checks 2015-03-04 12:59:41 +00:00
sin
ce3377dbb2 Add wcsncat() and wcsncpy() checks 2015-03-04 12:42:55 +00:00
sin
a28cd72ce6 Add wcrtomb(), wcscat() and wcscpy() checks 2015-03-04 12:27:04 +00:00
sin
316c87a6a6 Style fix 2015-03-03 20:38:52 +00:00
sin
95f63b3084 Add mbstowcs() check 2015-03-03 20:36:35 +00:00
sin
d548f4a37d Add mbsnrtowcs() and mbsrtowcs() checks 2015-03-03 20:30:47 +00:00
sin
f0efb87f8f Add wmemcpy() and wmemmove() checks 2015-03-03 18:16:29 +00:00
sin
a810ecae68 Add wmemset() check 2015-03-03 18:13:14 +00:00
sin
4514109df1 Fix signed/unsigned warning 2015-03-03 17:11:16 +00:00
sin
d87f9d94e1 Remove gcc attribute decoration 2015-03-03 17:10:34 +00:00
sin
1118911981 Don't trap on error for vsprintf() and friends 2015-03-03 17:00:06 +00:00
sin
2ced6e28c3 Add fgetws() check 2015-03-03 14:44:46 +00:00
sin
7279c33202 Add ppoll() check 2015-03-03 14:28:25 +00:00
sin
15c2b9d8df Add fwrite() check 2015-03-01 13:17:21 +00:00
sin
0c985218e9 Add fread() check 2015-03-01 13:12:09 +00:00
sin
488c3c7183 Add vsprintf() check 2015-03-01 12:10:40 +00:00
sin
66b34fbe59 Fix potential signed/unsigned warning 2015-03-01 11:55:38 +00:00
sin
0826c593be Add sprintf() check 2015-03-01 11:09:13 +00:00
sin
e71d1fd257 Remove redundant checks 
We can never have an array of more than SIZE_MAX/2/sizeof(gid_t)
gid_t's.
 2015-02-28 20:50:34 +00:00
sin
de499b92ba Minor style fix 2015-02-28 20:21:34 +00:00
sin
91db6f5899 Add sendto() check 2015-02-28 16:56:21 +00:00
sin
958ead636c Add readlink() and readlinkat() checks 2015-02-28 16:48:58 +00:00
sin
e02237241b Style fix 2015-02-28 16:11:32 +00:00
sin
7212959240 Use __typeof__(sizeof 0) trickery 
We cannot pull stddef.h and since fortify already relies on GCC
features we can use the above typeof trick to get a usable size_t.
 2015-02-28 16:01:26 +00:00
sin
4672406edd __fortify_realpath() should trap if PATH_MAX is not defined 
This is currently done only if the pointer is non-NULL.
 2015-02-28 15:59:52 +00:00
sin
5ebf0ca70e Add note on binary compat 2015-02-28 15:41:13 +00:00
sin
a38ba9f68a Add README to make dist 2015-02-28 15:40:15 +00:00
sin
ef270c5abf Add initial README 2015-02-28 15:39:31 +00:00
sin
33d2ff5aa8 Add ttyname_r() check 2015-02-28 15:30:25 +00:00
sin
2f0e3f574f Don't include stddef.h from poll.h 2015-02-28 14:52:09 +00:00
sin
2ea31ca96f Add poll() check 
Not sure if including stddef.h from poll.h is acceptable.
 2015-02-28 12:10:41 +00:00
sin
195fffa420 Add getgroups() check 
Since getgroups() will never write more than NGROUPS_MAX entries
we might as well cap len to that value.

The following should probably not trap the program:

gid_t set[NGROUPS_MAX];
getgroups(NGROUPS_MAX + 1, set);
 2015-02-28 12:00:25 +00:00
sin
60a7076816 Add getdomainname() check 2015-02-28 11:52:02 +00:00
sin
74ab284496 Clarify comment a bit 2015-02-25 10:35:16 +00:00
sin
816ad6764b Add getlogin_r() check 2015-02-25 10:31:30 +00:00
sin
d8afaf63d2 Add send() check 2015-02-24 19:37:25 +00:00
sin
eb7c60712c Add write() check 2015-02-24 19:34:37 +00:00
sin
f05c09fac8 Add realpath() check 2015-02-24 19:04:02 +00:00
sin
eecef18261 Remove compile time checks 
These can produce false positives.  Given that we support fortify
source level 1 we shouldn't break valid code.
 2015-02-24 18:14:33 +00:00
sin
9a77136c59 Add gethostname() checks 2015-02-23 10:45:20 +00:00
sin
c1734bf206 Remove header license comments 2015-02-22 09:39:43 +00:00
sin
55196bdad6 Relicense under 0-clause BSD 2015-02-21 21:22:26 +00:00