Standalone portable header-based implementation of FORTIFY_SOURCE=3 http://git.dustri.org/fortify-headers/atom?h=2.2 2024-03-19T17:35:13Z 2024-03-19T17:35:13Z jvoisin 2024-03-19T17:35:13Z urn:sha1:8ed72e7c1caa0eb4238e649063c26a11720935de Since C11: > This function behaves as if it reads the bytes sequentially and stops as soon as a matching bytes is found: if the array pointed to by ptr is smaller than count, but the match is found within the array, the behavior is well-defined. Reported-by: q66 2024-03-08T15:28:52Z jvoisin 2024-03-08T15:07:57Z urn:sha1:140cffbe84a08669d67c3257258d2bb70ff29c3b See: - https://www.imperialviolet.org/2016/06/26/nonnull.html - https://davidben.net/2024/01/15/empty-slices.html 2023-12-28T15:13:37Z jvoisin 2023-12-27T16:07:32Z urn:sha1:22a8094b41b2606084dc0c0c70487e5ed0fcb652 They were previously disabled in 80a83a5 2023-12-27T15:17:55Z jvoisin 2023-12-27T15:17:55Z urn:sha1:8513fddefca4c6e3982718732afeec71bad4e688 2023-12-27T15:06:59Z jvoisin 2023-12-27T11:36:47Z urn:sha1:80a83a56b52e833e6d3afec4d0723d7625d52cee They check overlap across the whole range of the given length, but the given length is not what will actually be copied, rather it's the maximum length (if src is shorter, only length of src will be copied). This triggers false positives and traps where it shouldn't (e.g. in ICU tests). Reported-by: q66 2023-12-18T11:52:12Z psykose 2023-12-18T11:47:09Z urn:sha1:01dc0e38a8a0be034bf21cc6ae4cc8cebc0e7a79 2023-12-15T23:51:48Z q66 2023-12-15T23:51:48Z urn:sha1:021e25b5c0a098fc4e2b27a31abb34cb32b76be5 It's UB to subtract null pointers, which these potentially may be. It also makes python test suite fail. 2023-12-15T22:50:43Z q66 2023-12-15T22:48:58Z urn:sha1:a018052d410126f94c2602b208b099839d333b05 2023-12-15T20:41:08Z jvoisin 2023-12-15T15:08:12Z urn:sha1:57a3e9c1c7507b5ce56122429cc3649009a4ecc7 This should fix #32 2023-09-30T17:24:02Z jvoisin 2023-09-30T17:24:02Z urn:sha1:160298c6fb4c5151ef58ef1556ae2c271d8a9a9e