Contributed by jose on from the string-function-inquisition dept.
"The OpenBSD team is currently purging the source of as many instances of dangerous string functions (strcpy, strcat, sprintf, etc) where they can. They will be replacing them with the the bounds-checking family of these functions (strlcat, strlcpy, snprintf, and asprintf) "where applicable."The diffs between these files will be an excellent illustrative tool of how to migrate from functions that don't do bounds checking to ones that do. This is highly suggested reading for people that are interested in learning how to do this (because it's not always as simple as strcat() -> strlcat()).
Theo has asked everyone to help test the new code out when 3.4-snapshots become available.
MARCs archive of the email is here: Theo's Message "
(Comments are closed)