fortify-headers 1.1 Standalone fortify-source implementation
This is a standalone implementation of fortify source. It provides compile time buffer checks. It is libc-agnostic and simply overlays the system headers by using the #include_next
extension found in GCC. It was initially intended to be used on musl-based Linux distributions.
It is portable, works on *BSD, Linux, Solaris and possibly others.
It will only trap non-conformant programs. This means that fortify level 2 is treated in the same way as level 1.
Avoids making function calls when undefined behaviour has already been invoked. This is handled by using
__builtin_trap()
.Support for out-of-bounds read interfaces, such as
send()
,write()
,fwrite()
, etc.No ABI is enforced. All of the fortify check functions are inlined into the resulting binary.
- Website: https://git.2f30.org/fortify-headers/
- License: ISC
- Package source: suckless.scm
- Patches: None
- Builds: x86_64-linux, i686-linux