[Bug c++/46513] Request: Warning for use of unsafe string handling functions

noloader at gmail dot com gcc-bugzilla@gcc.gnu.org
Wed Nov 17 01:25:00 GMT 2010


--- Comment #2 from Jeffrey Walton <noloader at gmail dot com> 2010-11-17 01:08:22 UTC ---
Hi Jonathan,

(In reply to comment #1)
> The maintainers of GNU libc, the C and C++ committees and the POSIX working
> group have not seen fit to include those functions, and they're not available
> on my GNU/Linux box.
Interesting. In 2010, I was hoping the strl* functions would side step the
political mess of TR24731-1 on *nix. For those resisting, TR24731-1 is now a
normative part of the C1x draft (as Annex K), so its coming whether they want
it or not :/

Never the less, a warning would still be useful since lots of code still
employs the unsafe functions. For those who are inclined - such as myself and
others who perform security related audits - a compiler warning would be a
welcome addition, even if there is no standard replacement. I'll tackle "what
to replace it with" in-turn on the specific platform.


More information about the Gcc-bugs mailing list