|
|
|
|
|
|
by prussian
1835 days ago
|
|
|
> I've spent 10 years writing security critical C code. There's no problem writing secure code in C. You just have to stop being clever and prioritize security above "speed". Your code will probably be fast enough anyway. Are there good examples of what you mean by this? From my own C++ experience, when dealing with c libraries and std::string types, I'll sometimes use the copying api's[0] when passing around std::string::c_str() because I find it easier than worrying about invalidating the returned reference if the string is destructed or modified. [0]: e.g. https://curl.se/libcurl/c/CURLOPT_COPYPOSTFIELDS.html |
|
|