Changeset View
Changeset View
Standalone View
Standalone View
tools/build/options/WITHOUT_FORTIFY
- This file was added.
| .\" $FreeBSD$ | |||||
| Set to not build world with FORTIFY_SOURCE. | |||||
| FORTIFY_SOURCE feature provides primitive support for detecting buffer overflows in various functions which operates on memory areas and strings. A limited set of buffer overflows can be detected with this feature, but it provides an additional level of validation for some functions which are potentially an origin of buffer overflow flaws. | |||||
pfg: FORTIFY_SOURCE `**is a libc** feature that provides primitive support for detecting buffer… | |||||
Done Inline ActionsFixed in next version (commited the fix to github). op: Fixed in next version (commited the fix to github). | |||||
FORTIFY_SOURCE `is a libc feature that provides primitive support for detecting buffer overflows in various functions which operate on memory areas and strings. A limited set of buffer overflows can be detected with this feature, but it provides an additional level of validation for some functions which are the origin of buffer overflow flaws.
(remove the "potential" term: These are buffer overflows, there is not such thing as a false positive at least at level 1.)