diff options
| author | sin | 2015-03-06 16:52:26 +0000 |
|---|---|---|
| committer | sin | 2015-03-06 16:52:26 +0000 |
| commit | df61e9484fcbeca7d573d194f4b1433a9b517ba4 (patch) | |
| tree | 51afd5ae81500e07fc5a0c854eb8f2776988e088 | |
| parent | ae1dec3b6395af5a178a225ba83a6751e5767878 (diff) | |
Update README
| -rw-r--r-- | README | 7 |
1 files changed, 4 insertions, 3 deletions
| @@ -2,8 +2,9 @@ What is it? | |||
| 2 | =========== | 2 | =========== |
| 3 | 3 | ||
| 4 | This is a standalone implementation of fortify source[0]. It is libc-agnostic | 4 | This is a standalone implementation of fortify source[0]. It is libc-agnostic |
| 5 | and simply overlays the system headers by using GCC's #include_next. It was | 5 | and simply overlays the system headers by using the #include_next extension found |
| 6 | initially designed to be used on musl[1] based Linux distributions. | 6 | in GCC and clang. It was initially designed to be used on musl[1] based Linux |
| 7 | distributions. | ||
| 7 | 8 | ||
| 8 | 9 | ||
| 9 | Why? | 10 | Why? |
| @@ -13,7 +14,7 @@ Why? | |||
| 13 | - It will only trap non-conformant programs. This means that fortify | 14 | - It will only trap non-conformant programs. This means that fortify |
| 14 | level 2 is treated in the same way as level 1. | 15 | level 2 is treated in the same way as level 1. |
| 15 | - Avoids making function calls when UB has already been invoked. This | 16 | - Avoids making function calls when UB has already been invoked. This |
| 16 | is handled by using GCC's __builtin_trap(). | 17 | is handled by using __builtin_trap(). |
| 17 | - Check functions for out-of-bounds read interfaces, such as send(), | 18 | - Check functions for out-of-bounds read interfaces, such as send(), |
| 18 | write(), fwrite() etc. | 19 | write(), fwrite() etc. |
| 19 | - No ABI is enforced. All of the check functions are inlined into the | 20 | - No ABI is enforced. All of the check functions are inlined into the |