Standalone portable header-based implementation of FORTIFY_SOURCE=3 http://git.dustri.org/fortify-headers/atom?h=3.0.2 2026-04-30T22:44:53Z 2026-04-30T22:44:53Z jvoisin 2026-04-30T22:36:32Z urn:sha1:ddd22b2f533db9c0da0bb262fbafa51f67c8587e Previously, no checks were done when __n <= __b, but strncat _appends_ after existing content, making this a overly broad check check. For example, with an 8-byte buffer containing "12345\0", strncat(buf, "ABCD", 4) would have the check skipped, but the result "12345ABCD\0" is 10 bytes, resulting in an overflow. This commit fixes this oversight, and adds a bunch of tests. 2026-04-30T15:37:02Z jvoisin 2026-04-30T15:37:02Z urn:sha1:6040b4a27409968c764353a98c45d972cfd89a8a The manpage says that stpncpy will "copy non-null bytes from the string pointed to by src into the array pointed to by dst.", it doesn't add a terminal NULL byte, so we shouldn't check for it. 2025-12-30T10:34:48Z jvoisin 2025-12-30T10:33:08Z urn:sha1:eec2b5e06bdb01d20f1a1125074a379e0b154d80 2025-12-30T10:34:48Z jvoisin 2025-12-30T10:32:19Z urn:sha1:c4c5fd41124f38a5afee02b8f604ddc21d3b199a 2025-11-14T15:56:09Z jvoisin 2025-11-14T15:25:52Z urn:sha1:611069d07c14bf7ace7a75fa2bc9147db8ac097d 2025-11-14T12:55:31Z jvoisin 2025-11-12T21:28:13Z urn:sha1:bf242b15e1f7873bdb940c2441b5e57747bc2f81 2025-10-31T21:16:21Z Daniel Kolesa 2022-10-25T22:30:00Z urn:sha1:f46714c2f9eb13c12c8218f1b7c045182041fdc9 Co-Authored-By: jvoisin <julien.voisin@dustri.org> 2025-10-31T21:16:21Z Daniel Kolesa 2022-11-01T19:14:54Z urn:sha1:8915dc13de44fed3a076a9fd51eb1ab2b5502d7b It seems useless and triggers 'error: expected external declaration' 2025-10-31T21:16:21Z jvoisin 2023-03-18T13:01:02Z urn:sha1:249492e08adbf034976770ab3b021ba093a2ab18 GCC and Clang provide __builtin_dynamic_object_size (see documentation: https://gcc.gnu.org/onlinedocs/gcc/Object-Size-Checking.html), so we should make use of it when its available. 2019-02-25T13:17:08Z sin 2019-02-25T13:01:12Z urn:sha1:5aabc7e6aad28327d75671e52c50060e4543112c