Y
Hacker News
new
|
ask
|
show
|
jobs
by
saagarjha
2037 days ago
It’s getting memccpy, which is an extremely important function for the creation of a performant, safe string copying method.
2 comments
pjmlp
2037 days ago
It is impossible to be safe if size is a function argument that cannot be validated without hardware support.
link
saagarjha
2037 days ago
My definition of safety likely differs from yours.
link
pjmlp
2037 days ago
My definition of safety means having a size greater than the actual string doesn't turn an innocent looking call into a CVE database entry.
I bet the security industry agrees with my definition.
link
bzb6
2037 days ago
Isn’t a function like that trivial to implement?
link