.\" $FreeBSD$

Set to not build world with FORTIFY_SOURCE.

FORTIFY_SOURCE feature provides primitive support for detecting buffer overflows in various functions which operates on memory areas and strings. A limited set of buffer overflows can be detected with this feature, but it provides an additional level of validation for some functions which are potentially an origin of buffer overflow flaws.

#ifdef __BSD_FORTIFY

#include <secure/_stat.h>

#endif

#ifdef __BSD_FORTIFY

#include <secure/_socket.h>

#endif

#ifdef __BSD_FORTIFY

#include <secure/_poll.h>

#endif

#if __has_attribute(error) || __GNUC_PREREQ__(4, 3)

#define	__error_attr(msg)	__attribute__((__error__(msg)))

#else

#define	__error_attr(msg)

#endif

/* FORTIFY_SOURCE related defines. */

#if __GNUC_PREREQ__(4, 1) && defined(_FORTIFY_SOURCE) && _FORTIFY_SOURCE > 0 && \

    defined(__OPTIMIZE__) && __OPTIMIZE__ > 0 && !defined(lint)

#define	__BSD_FORTIFY	1

#if _FORTIFY_SOURCE >= 2

#define	__bos(s)	__builtin_object_size((s), 1)

#else

#define	__bos(s)	__builtin_object_size((s), 0)

#endif

#define	__bos0(s)	__builtin_object_size((s), 0)

#define	__FORTIFY_INLINE	extern __inline __always_inline __gnu_inline

#endif /* !_FORTIFY_SOURCE */

#define	__FORTIFY_UNKNOWN_SIZE	((size_t) -1)

.include <bsd.opts.mk>

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

.include <bsd.opts.mk>

MK_FORTIFY=		no

.include <bsd.opts.mk>

MK_FORTIFY=	no

.include <src.opts.mk>

MK_FORTIFY=	no

MK_FORTIFY=	no

.include <src.opts.mk>

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

.include <src.opts.mk>

MK_FORTIFY=	no

MK_FORTIFY=	no

.if ${MK_FORTIFY} != "no"

FORTIFY_CFLAGS?=	-D_FORTIFY_SOURCE=1

CFLAGS+=	${FORTIFY_CFLAGS}

.endif # FORTIFY

    FORTIFY \

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

MK_FORTIFY=	no

#undef _FORTIFY_SOURCE

/*

 * Yes, this second one is a big hack.

 */

#undef __BSD_FORTIFY

MK_FORTIFY=	no

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

#undef _FORTIFY_SOURCE

/*

 * Written by Alexander Kabaev <kan@FreeBSD.org>

 * The file is in public domain.

 */

#include <sys/cdefs.h>

__FBSDID("$FreeBSD$");

void __stack_chk_fail(void);

#ifdef PIC

void

__stack_chk_fail_local_hidden(void)

{

	__stack_chk_fail();

}

__sym_compat(__stack_chk_fail_local, __stack_chk_fail_local_hidden, FBSD_1.0);

#endif

/* $NetBSD: stack_protector.c,v 1.4 2006/11/22 17:23:25 christos Exp $	*/

/* $OpenBSD: stack_protector.c,v 1.10 2006/03/31 05:34:44 deraadt Exp $	*/

/*

 * Copyright (c) 2002 Hiroaki Etoh, Federico G. Schwindt, and Miodrag Vallat.

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 * 1. Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 * 2. Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in the

 *    documentation and/or other materials provided with the distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS OR

 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED

 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE

 * DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY DIRECT,

 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES

 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR

 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN

 * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE

 * POSSIBILITY OF SUCH DAMAGE.

 *

 */

#include <sys/cdefs.h>

__FBSDID("$FreeBSD$");

#include <sys/param.h>

#include <sys/sysctl.h>

#include <sys/types.h>

#include <secure/security.h>

#include <link.h>

#include "libc_private.h"

extern int __sysctl(const int *name, u_int namelen, void *oldp,

    size_t *oldlenp, void *newp, size_t newlen);

long __stack_chk_guard[8] = {0, 0, 0, 0, 0, 0, 0, 0};

static void __guard_setup(void) __attribute__((__constructor__, __used__));

void __stack_chk_fail(void) __dead2;

/*LINTED used*/

static void

__guard_setup(void)

{

	static const int mib[2] = { CTL_KERN, KERN_ARND };

	size_t len;

	int error;

	if (__stack_chk_guard[0] != 0)

		return;

	error = _elf_aux_info(AT_CANARY, __stack_chk_guard,

	    sizeof(__stack_chk_guard));

	if (error == 0 && __stack_chk_guard[0] != 0)

		return;

	len = sizeof(__stack_chk_guard);

	if (__sysctl(mib, nitems(mib), __stack_chk_guard, &len, NULL, 0) ==

	    -1 || len != sizeof(__stack_chk_guard)) {

		/* If sysctl was unsuccessful, use the "terminator canary". */

		((unsigned char *)(void *)__stack_chk_guard)[0] = 0;

		((unsigned char *)(void *)__stack_chk_guard)[1] = 0;

		((unsigned char *)(void *)__stack_chk_guard)[2] = '\n';

		((unsigned char *)(void *)__stack_chk_guard)[3] = 255;

	}

}

void

__stack_chk_fail(void)

{

	__secure_fail("stack overflow detected; terminated");

}

void

__chk_fail(void)

{

	__secure_fail("buffer overflow detected; terminated");

}

#ifndef PIC

__weak_reference(__stack_chk_fail, __stack_chk_fail_local);

#endif

/* $NetBSD: stack_protector.c,v 1.4 2006/11/22 17:23:25 christos Exp $	*/

/* $OpenBSD: stack_protector.c,v 1.10 2006/03/31 05:34:44 deraadt Exp $	*/

/*

 * Copyright (c) 2002 Hiroaki Etoh, Federico G. Schwindt, and Miodrag Vallat.

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 * 1. Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 * 2. Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in the

 *    documentation and/or other materials provided with the distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS OR

 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED

 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE

 * DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY DIRECT,

 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES

 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR

 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN

 * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE

 * POSSIBILITY OF SUCH DAMAGE.

 *

 */

#include <sys/cdefs.h>

__FBSDID("$FreeBSD$");

#include <sys/param.h>

#include <sys/sysctl.h>

#include <sys/types.h>

#include <errno.h>

#include <link.h>

#include <signal.h>

#include <string.h>

#include <syslog.h>

#include <unistd.h>

#include "libc_private.h"

static void __fail(const char *) __dead2;

/*ARGSUSED*/

static void

__fail(const char *msg)

{

	struct sigaction sa;

	sigset_t mask;

	/* Immediately block all signal handlers from running code */

	(void)sigfillset(&mask);

	(void)sigdelset(&mask, SIGABRT);

	(void)sigprocmask(SIG_BLOCK, &mask, NULL);

	/* This may fail on a chroot jail... */

	syslog(LOG_CRIT, "%s", msg);

	(void)memset(&sa, 0, sizeof(sa));

	(void)sigemptyset(&sa.sa_mask);

	sa.sa_flags = 0;

	sa.sa_handler = SIG_DFL;

	(void)sigaction(SIGABRT, &sa, NULL);

	(void)kill(getpid(), SIGABRT);

	_exit(127);

}

void

__secure_fail(const char *msg)

{

	__fail(msg);

}

/*-

 * Copyright (c) 2015 Olivér Pintér <op@FreeBSD.org>

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 * 1. Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 * 2. Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in the

 *    documentation and/or other materials provided with the distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND

 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * $FreeBSD$

 */

#include <sys/cdefs.h>

#include <sys/param.h>

#include <sys/sysctl.h>

#include <sys/types.h>

#include "secure/security.h"

void

__fortify_chk_fail(const char* msg)

{

	__secure_fail(msg);

}

int

__fortify_chk_overlap(const void *a, const void *b, size_t len)

{

	return ((a <= b && b <= a + len) || (b <= a && a <= b + len));

}

/*-

 * Copyright (C) 2012 The Android Open Source Project

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *  * Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *  * Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE

 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,

 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,

 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS

 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED

 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * bionic rev: d807b9a12d3e49132b095df3d883618452033b51

 *

 * $FreeBSD$

 */

#undef _FORTIFY_SOURCE

#include <sys/cdefs.h>

#include <secure/security.h>

#include <stdio.h>

#include <stdlib.h>

#include <stdarg.h>

#include "secure/_stdio.h"

int

__vsprintf_chk(char * __restrict d, int flags, size_t bos, const char * __restrict fmt, __va_list va)

{

	int result;

	if (__predict_false(bos == __FORTIFY_UNKNOWN_SIZE))

		return (vsprintf(d, fmt, va));

	result = vsnprintf(d, bos, fmt, va);

	if ((size_t)result >= bos)

		__fortify_chk_fail(

		    "vsprintf: prevented write past end of buffer");

	return (result);

}

int

__sprintf_chk(char * __restrict d, int flags, size_t bos, const char * __restrict fmt, ...)

{

	va_list va;

	int result;

	if (bos == __FORTIFY_UNKNOWN_SIZE) {

		va_start(va, fmt);

		result = vsprintf(d, fmt, va);

		va_end(va);

		return (result);

	}

	va_start(va, fmt);

	result = __vsprintf_chk(d, flags, bos, fmt, va);

	va_end(va);

	return (result);

}

/*-

 * Copyright (C) 2012 The Android Open Source Project

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *  * Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *  * Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE

 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,

 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,

 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS

 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED

 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * bionic rev: d807b9a12d3e49132b095df3d883618452033b51

 *

 * $FreeBSD$

 */

#undef _FORTIFY_SOURCE

#include <sys/cdefs.h>

#include <secure/security.h>

#include <stdio.h>

#include <stdlib.h>

#include <stdarg.h>

#include "secure/_stdio.h"

int

__vsnprintf_chk(char *d, size_t n, int flags, size_t bos, const char *fmt, va_list va)

{

	if (__predict_false(bos == __FORTIFY_UNKNOWN_SIZE))

		return (vsnprintf(d, n, fmt, va));

	if (__predict_false(n > bos))

		__fortify_chk_fail(

		    "vsnprintf: prevented write past end of buffer");

	return (vsnprintf(d, n, fmt, va));

}

int

__snprintf_chk(char *d, size_t n, int flags, size_t bos, const char *fmt, ...)

{

	va_list va;

	int result;

	if (bos == __FORTIFY_UNKNOWN_SIZE) {

		va_start(va, fmt);

		result = vsnprintf(d, n, fmt, va);

		va_end(va);

		return (result);

	}

	va_start(va, fmt);

	result = __vsnprintf_chk(d, n, flags, bos, fmt, va);

	va_end(va);

	return (result);

}

/*-

 * Copyright (C) 2012 The Android Open Source Project

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *  * Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *  * Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE

 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,

 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,

 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS

 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED

 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * rev: d807b9a12d3e49132b095df3d883618452033b51

 *

 * $FreeBSD$

 */

#undef _FORTIFY_SOURCE

#include <sys/cdefs.h>

#include <secure/security.h>

#include <sys/types.h>

#include <sys/stat.h>

#include <stdlib.h>

#include "secure/_stat.h"

/*

 * Validate that umask is called with sane mode.

 */

mode_t 

__umask_chk(mode_t mode)

{

	if (__predict_false((mode & 0777) != mode))

		__fortify_chk_fail("umask: called with invalid mask");

	return (umask(mode));

}

/*-

 * Copyright (c) 1988 Regents of the University of California.

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 * 1. Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 * 2. Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in the

 *    documentation and/or other materials provided with the distribution.

 * 3. Neither the name of the University nor the names of its contributors

 *    may be used to endorse or promote products derived from this software

 *    without specific prior written permission.

 *

 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND

 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

 * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE

 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * bionic rev: d807b9a12d3e49132b095df3d883618452033b51

 *

 * $FreeBSD$

 */

#undef _FORTIFY_SOURCE

#include <sys/cdefs.h>

#include <secure/security.h>

#include <string.h>

#include "secure/_string.h"

char *

__strrchr_chk(const char *p, int ch, size_t bos)

{

	char *save;

	if (__predict_false(bos == __FORTIFY_UNKNOWN_SIZE))

		return (strrchr(p, ch));

	for (save = NULL;; ++p, bos--) {

		if (bos == 0)

			__fortify_chk_fail(

			    "strrchr: prevented read past end of buffer");

		if (*p == (char)ch)

			save = (char *)p;

		if (!*p)

			return (save);

	}

	/* NOTREACHED */

}

__weak_reference(__strrchr_chk, __rindex_chk);

/*-

 * Copyright (C) 2012 The Android Open Source Project

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *  * Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *  * Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE

 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,

 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,

 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS

 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED

 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * bionic rev: d807b9a12d3e49132b095df3d883618452033b51

 *

 * $FreeBSD$

 */

#undef _FORTIFY_SOURCE

#include <sys/cdefs.h>

#include <secure/security.h>

#include <string.h>

#include <stdlib.h>

#include "secure/_string.h"

char *

__strncpy_chk(char *__restrict d, const char *__restrict s, size_t n, size_t bos)

{

	if (__predict_false(bos == __FORTIFY_UNKNOWN_SIZE))

		return (strncpy(d, s, n));

	if (__predict_false(n > bos))

		__fortify_chk_fail(

		    "strncpy: prevented write past end of buffer");

	return (strncpy(d, s, n));

}

/*

 * __strncpy_chk2

 *

 * This is a variant of __strncpy_chk, but it also checks to make

 * sure we don't read beyond the end of "src". The code for this is

 * based on the original version of strncpy, but modified to check

 * how much we read from "src" at the end of the copy operation.

 */

char *

__strncpy_chk2(char *__restrict d, const char *__restrict s, size_t n, size_t d_bos, size_t s_bos)

{

	size_t s_copy_len;

	if (__predict_false(d_bos == __FORTIFY_UNKNOWN_SIZE))

		return (strncpy(d, s, n));

	if (__predict_false(s_bos == __FORTIFY_UNKNOWN_SIZE))

		return (__strncpy_chk(d, s, n, d_bos));

	if (__predict_false(n > d_bos))

		__fortify_chk_fail("strncpy: prevented write past end of buffer");

	if (n != 0) {

		char *_d = d;

		const char *_s = s;

		do {

			if ((*_d++ = *_s++) == 0) {

				/* NUL pad the remaining n-1 bytes */

				while (--n != 0)

					*_d++ = 0;

				break;

			}

		} while (--n != 0);

		s_copy_len = (size_t)(_s - s);

		if (__predict_false(s_copy_len > s_bos))

			__fortify_chk_fail("strncpy: prevented read past end of buffer");

	}

	return (d);

}

/*-

 * Copyright (C) 2012 The Android Open Source Project

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *  * Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *  * Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE

 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,

 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,

 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS

 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED

 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * bionic rev: d807b9a12d3e49132b095df3d883618452033b51

 *

 * $FreeBSD$

 */

#undef _FORTIFY_SOURCE

#include <sys/cdefs.h>

#include <secure/security.h>

#include <string.h>

#include <stdlib.h>

#include "secure/_string.h"

char *

__strncat_chk(char *__restrict d, const char *__restrict s, size_t n, size_t bos)

{

	size_t d_len;

	char *_d;

	if (__predict_false(bos == __FORTIFY_UNKNOWN_SIZE))

		return (strncat(d, s, n));

	if (n == 0)

		return (d);

	d_len = __strlen_chk(d, bos);

	_d = d + d_len;

	bos -= d_len;

	while (*s != '\0') {

		*_d++ = *s++;

		n--;

		bos--;

		if (__predict_false(bos == 0))

			__fortify_chk_fail("strncat: prevented write past end of buffer");

		if (n == 0)

			break;

	}

	*_d = '\0';

	return (d);

}

/*-

 * Copyright (C) 2012 The Android Open Source Project

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *  * Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *  * Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE

 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,

 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,

 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS

 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED

 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * bionic rev: d807b9a12d3e49132b095df3d883618452033b51

 *

 * $FreeBSD$

 */

#undef _FORTIFY_SOURCE

#include <sys/cdefs.h>

#include <secure/security.h>

#include <string.h>

#include <stdlib.h>

#include "secure/_string.h"

/*

 * This test is designed to detect code such as:

 *

 * int main() {

 *   char buf[10];

 *   memcpy(buf, "1234567890", sizeof(buf));

 *   size_t len = strlen(buf); // segfault here with _FORTIFY_SOURCE

 *   printf("%d\n", len);

 *   return 0;

 * }

 *

 * or anytime strlen reads beyond an object boundary.

 */

size_t

__strlen_chk(const char *s, size_t bos)

{

	size_t ret;

	if (__predict_false(bos == __FORTIFY_UNKNOWN_SIZE))

		return (strlen(s));

	ret = strlen(s);

	if (__predict_false(ret >= bos))

		__fortify_chk_fail("strlen: prevented read past end of buffer");

	return (ret);

}

/*-

 * Copyright (C) 2012 The Android Open Source Project

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *  * Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *  * Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE

 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,

 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,

 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS

 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED

 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.

 *

 * bionic rev: d807b9a12d3e49132b095df3d883618452033b51

 *

 * $FreeBSD$

 */

#undef _FORTIFY_SOURCE

#include <sys/cdefs.h>

#include <secure/security.h>

#include <string.h>

#include <stdlib.h>

#include "secure/_string.h"

size_t

__strlcpy_chk(char *d, const char *s, size_t n, size_t bos)

{

	if (__predict_false(bos == __FORTIFY_UNKNOWN_SIZE))

		return (strlcpy(d, s, n));

	if (__predict_false(n > bos))

		__fortify_chk_fail("strlcpy: prevented write past end of buffer");

	return (strlcpy(d, s, n));

}

/*-

 * Copyright (C) 2012 The Android Open Source Project

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *  * Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *  * Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE

 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,

 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,

 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS

 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED

 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

 * SUCH DAMAGE.