[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: think twice before enabling -D_FORTIFY_SOURCE=2 for C projects without thorough build-time testing

On Wed, Sep 25, 2013 at 11:43:22AM +0000, Thorsten Glaser wrote:
> No, the standard said it would either always fail or never, but independent
> on the input data.

| Upon successful completion, crypt() shall return a pointer to the
| encoded string. The first two characters of the returned value shall be
| those of the salt argument. Otherwise, it shall return a null pointer
| and set errno to indicate the error.


You!  What PLANET is this!
		-- McCoy, "The City on the Edge of Forever", stardate 3134.0

Reply to: