| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2024-07-02 | Update a bit the readme2.3.1 | jvoisin | |
| 2024-06-21 | Add a test for C++ compilation | jvoisin | |
| 2024-06-15 | Fix some pointer-arithmetic warnings | jvoisin | |
| This should fix the second part of #59 | |||
| 2024-06-14 | Remove `restrict` keywords | jvoisin | |
| - They're not used anywhere else in fortify-headers - It's breaking compilation on C++, because compatibility is hard It was initially reported on https://gitlab.alpinelinux.org/alpine/aports/-/issues/16200 | |||
| 2024-05-26 | Add vasprintf/asprintf2.3 | jvoisin | |
| The only hardening being done here is to set the char** parameter to thos functions to NULL in case of an error, to prevent it from being used should people forget to check return values. This is already done on some BSD, as well as in Rocky Linux. | |||
| 2024-05-20 | Improve the testsuite reliability wrt. gcc | jvoisin | |
| 2024-04-24 | Add a test | jvoisin | |
| 2024-04-24 | Fix some overlap mismatch | jvoisin | |
| This was caught by the following test: ``` int main(void) { char c[32]; memcpy(c, c + 16, 16); } ``` Reported-by: q66 | |||
| 2024-04-24 | Disable pedantic checks by default | jvoisin | |
| They can be re-enabled via `PEDANTIC_CHECKS` | |||
| 2024-03-19 | Relax our checks for memchr on C11 and above2.2 | jvoisin | |
| Since C11: > This function behaves as if it reads the bytes sequentially and stops as soon as a matching bytes is found: if the array pointed to by ptr is smaller than count, but the match is found within the array, the behavior is well-defined. Reported-by: q66 | |||
| 2024-03-08 | Add some NULL-pointers checks | jvoisin | |
| See: - https://www.imperialviolet.org/2016/06/26/nonnull.html - https://davidben.net/2024/01/15/empty-slices.html | |||
| 2024-03-04 | Add a .gitattributes file to simplify releases | jvoisin | |
| 2024-01-13 | Properly check for builtins | jvoisin | |
| Clang's [documentation](https://clang.llvm.org/docs/LanguageExtensions.html#has-builtin) says: > __has_builtin should not be used to detect support for a builtin macro; use #ifdef instead. So we're now using both, since it's often tedious/non-trivial to find out what is a macro and what is a compiler builtin, across compilers and C versions. | |||
| 2023-12-28 | Re-enable previously disabled overlap checks | jvoisin | |
| They were previously disabled in 80a83a5 | |||
| 2023-12-28 | Make the CI fail when the testsuite fails | jvoisin | |
| 2023-12-28 | Build with USE_NATIVE_CHK for clang and gcc | jvoisin | |
| 2023-12-27 | Improve __fh_overlap implementation | jvoisin | |
| 2023-12-27 | Don't check for overlapping in strncpy/stpncpy for now | jvoisin | |
| They check overlap across the whole range of the given length, but the given length is not what will actually be copied, rather it's the maximum length (if src is shorter, only length of src will be copied). This triggers false positives and traps where it shouldn't (e.g. in ICU tests). Reported-by: q66 | |||
| 2023-12-18 | fix typo for __builtin_memcpy | psykose | |
| 2023-12-16 | Ditto for strrchr | q66 | |
| 2023-12-16 | Disable strchr tests since strchr hardening is disabled | q66 | |
| 2023-12-16 | Also handle SIGTRAP in tests | q66 | |
| SIGILL is not the only possible trap handler. On non-x86 archs this is not the case for instance. | |||
| 2023-12-16 | Bump to 2.12.1 | q66 | |
| 2023-12-16 | Disable str(r)chr hardening | q66 | |
| It's UB to subtract null pointers, which these potentially may be. It also makes python test suite fail. | |||
| 2023-12-15 | Rename some macros to be more namespace-friendly | q66 | |
| 2023-12-15 | Fix missing } for extern "C" when using clang | q66 | |
| 2023-12-15 | Move wctomb to stdlib.h and disable it for now | q66 | |
| 2023-12-15 | Guard some conditional stdio APIs with the right macros | q66 | |
| Fixes https://github.com/jvoisin/fortify-headers/issues/34 | |||
| 2023-12-15 | Do not use static inline for C++ to avoid ODR violations | q66 | |
| Fixes https://github.com/jvoisin/fortify-headers/issues/31 | |||
| 2023-12-15 | Add missing include in select.h | q66 | |
| 2023-12-15 | Remove superfluous includes | Julien Voisin | |
| 2023-12-15 | Remove superfluous includes | jvoisin | |
| This should fix #32 | |||
| 2023-12-12 | Bump to 2.02.0 | jvoisin | |
| 2023-12-10 | Add gcc 13 to the CI | jvoisin | |
| 2023-12-08 | Add a check in the CI to keep the readme up to date | jvoisin | |
| 2023-12-08 | Update the readme to point to upstream git repo | jvoisin | |
| 2023-12-07 | Add qsort | jvoisin | |
| 2023-12-07 | Add a global test to ensure that all headers are compiling | jvoisin | |
| 2023-12-06 | Work around an erroneous `-Wformat-nonliteral` bug in gcc | jvoisin | |
| See https://gcc.gnu.org/bugzilla/show_bug.cgi?id=110834 Reported-by: ksperling-apple | |||
| 2023-12-05 | Update the README | jvoisin | |
| 2023-11-16 | Add hardening for select() | Julien Voisin | |
| 2023-11-16 | Add hardening for select() | jvoisin | |
| This is unlikely to be used, since fd_set is usually manipulated by macros, but it doesn't hurt to add a simple comparison. | |||
| 2023-11-01 | Add support for FD_ISSET | jvoisin | |
| 2023-10-16 | Add a check about redefined macros | jvoisin | |
| 2023-10-01 | Add vfprintf` | jvoisin | |
| 2023-10-01 | Add `fprintf` | jvoisin | |
| 2023-09-30 | Add `vprintf` | jvoisin | |
| 2023-09-30 | Fix a typo | jvoisin | |
| 2023-09-30 | Add `strlen` | jvoisin | |
| 2023-09-29 | Make use of the native _chk variants for real | jvoisin | |
 |
index : fortify-headers | |
| Standalone portable header-based implementation of FORTIFY_SOURCE=3 |
| summaryrefslogtreecommitdiff |