| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2024-10-10 | Fix a crash in strncpy/stpncpystrn | jvoisin | |
| ``` Core was generated by `scripts/mod/modpost -M -m -o Module.symvers -n -T modules.order vmlinux.o'. Program terminated with signal SIGSEGV, Segmentation fault. warning: 17 src/string/strlen.c: No such file or directory (gdb) bt ``` > I think strncpy logic is broken: `__fh_size_t max_len_s = strlen(__s);` may try read past `size_t __n`. > Create a buf without any trailing `\0`, do `strncpy(dest, buf, sizeof(buf));`, it should work, since `strncpy` will stop at `sizeof buf` > but the current fority-headers implementation will do `strlen(buf)`, which will go boom when it is not terminated with \0 Reported-by: ncopa | |||
| 2024-10-10 | Disable snprintf/sprintf hardening for now2.3.2 | jvoisin | |
| 2024-10-08 | Run various C versions in the CI | jvoisin | |
| 2024-09-06 | Work around a gcc warning | jvoisin | |
| It seems that annotating sprintf with `write` makes gcc unhappy, as its analyser is unable to understand that we're checking if `__b != -1` before calling `__orig_snprintf`, so let's comment this annotation for now. | |||
| 2024-07-10 | prefix special defines with FORTIFY_ | psykose | |
| just in case, and because 'PEDANTIC_CHECKS' is a really generic name | |||
| 2024-06-21 | Add a test for C++ compilation | jvoisin | |
| 2024-06-15 | Fix some pointer-arithmetic warnings | jvoisin | |
| This should fix the second part of #59 | |||
| 2024-05-26 | Add vasprintf/asprintf2.3 | jvoisin | |
| The only hardening being done here is to set the char** parameter to thos functions to NULL in case of an error, to prevent it from being used should people forget to check return values. This is already done on some BSD, as well as in Rocky Linux. | |||
| 2024-04-24 | Add a test | jvoisin | |
| 2024-04-24 | Fix some overlap mismatch | jvoisin | |
| This was caught by the following test: ``` int main(void) { char c[32]; memcpy(c, c + 16, 16); } ``` Reported-by: q66 | |||
| 2024-04-24 | Disable pedantic checks by default | jvoisin | |
| They can be re-enabled via `PEDANTIC_CHECKS` | |||
| 2024-03-19 | Relax our checks for memchr on C11 and above2.2 | jvoisin | |
| Since C11: > This function behaves as if it reads the bytes sequentially and stops as soon as a matching bytes is found: if the array pointed to by ptr is smaller than count, but the match is found within the array, the behavior is well-defined. Reported-by: q66 | |||
| 2024-03-08 | Add some NULL-pointers checks | jvoisin | |
| See: - https://www.imperialviolet.org/2016/06/26/nonnull.html - https://davidben.net/2024/01/15/empty-slices.html | |||
| 2023-12-28 | Re-enable previously disabled overlap checks | jvoisin | |
| They were previously disabled in 80a83a5 | |||
| 2023-12-27 | Don't check for overlapping in strncpy/stpncpy for now | jvoisin | |
| They check overlap across the whole range of the given length, but the given length is not what will actually be copied, rather it's the maximum length (if src is shorter, only length of src will be copied). This triggers false positives and traps where it shouldn't (e.g. in ICU tests). Reported-by: q66 | |||
| 2023-12-16 | Ditto for strrchr | q66 | |
| 2023-12-16 | Disable strchr tests since strchr hardening is disabled | q66 | |
| 2023-12-16 | Also handle SIGTRAP in tests | q66 | |
| SIGILL is not the only possible trap handler. On non-x86 archs this is not the case for instance. | |||
| 2023-12-15 | Remove superfluous includes | jvoisin | |
| This should fix #32 | |||
| 2023-12-07 | Add qsort | jvoisin | |
| 2023-12-07 | Add a global test to ensure that all headers are compiling | jvoisin | |
| 2023-11-16 | Add hardening for select() | jvoisin | |
| This is unlikely to be used, since fd_set is usually manipulated by macros, but it doesn't hurt to add a simple comparison. | |||
| 2023-11-01 | Add support for FD_ISSET | jvoisin | |
| 2023-10-01 | Add vfprintf` | jvoisin | |
| 2023-10-01 | Add `fprintf` | jvoisin | |
| 2023-09-30 | Add `vprintf` | jvoisin | |
| 2023-09-30 | Add `strlen` | jvoisin | |
| 2023-09-29 | Make use of the native _chk variants for real | jvoisin | |
| 2023-09-28 | Add `printf` hardening | jvoisin | |
| 2023-09-20 | Add tests for compile-time errors | jvoisin | |
| 2023-09-17 | Make use of the buffers in the wide-chars tests | jvoisin | |
| Just in case the compiler tries to optimize some things away. | |||
| 2023-09-17 | Fix compilation under clang for bsd-specific functions | jvoisin | |
| 2023-09-17 | Add more dynamic tests | jvoisin | |
| 2023-09-17 | Add dynamic tests for strcpy and strncat | jvoisin | |
| 2023-09-17 | Add a test for stpcpy | jvoisin | |
| 2023-09-11 | Fix a warning | jvoisin | |
| 2023-09-11 | Add a bunch of wchar_t tests | jvoisin | |
| 2023-09-04 | Add tests for wmemcpy | jvoisin | |
| 2023-08-26 | Add two tests for wmemmove | jvoisin | |
| 2023-08-22 | Show the failing file name in the testsuite | jvoisin | |
| 2023-08-22 | Add hardening for pwrite | jvoisin | |
| 2023-08-22 | Add tests for wmemset | jvoisin | |
| 2023-08-21 | Add tests for mbstowcs | jvoisin | |
| 2023-08-21 | Harden umask | jvoisin | |
| 2023-08-21 | Add tests for fgetws and mbsrtowcs | jvoisin | |
| 2023-08-20 | Remove the testsuite from the coverage data | jvoisin | |
| 2023-08-20 | Split build and run | jvoisin | |
| Both in the CI, and in the Makefile | |||
| 2023-08-20 | Fix clang build | jvoisin | |
| - s/CLFAGS/CFLAGS/ - provide paths to local includes - sprinkle more __pass_object_size__ - remove a problematic test | |||
| 2023-08-20 | Fix some sizeof-related typoes in the testsuite | jvoisin | |
| 2023-08-20 | Add hardening for strrchr | jvoisin | |
 |
index : fortify-headers | |
| Standalone portable header-based implementation of FORTIFY_SOURCE=3 |
| summaryrefslogtreecommitdiff |