cgzones

> > i can't follow, can you explain? > > as in not using dlsym to get the real functions i didn't seem to work with rustc and vscode, probably...

> ``` > org.openrgb.OpenRGB.desktop[4758]: fatal allocator error: wmemcpy overlap > audacity[4549]: fatal allocator error: wmemcpy overlap > ``` > > broken check? or something doing a silly? https://sources.debian.org/src/wxwidgets3.2/3.2.6%2Bdfsg-2/include/wx/string.h/#L1180 ```cpp //...

```diff diff --git a/h_malloc.c b/h_malloc.c index 9db6dcc..1ea6224 100644 --- a/h_malloc.c +++ b/h_malloc.c @@ -1884,7 +1884,7 @@ EXPORT void *memcpy(void *restrict dst, const void *restrict src, size_t len) { if (unlikely(dst...

Another function to cover could be `memccpy(3)`: patch ```diff --- Makefile | 4 +++- h_malloc.c | 16 ++++++++++++++ include/h_malloc.h | 1 + memccpy.c | 38 +++++++++++++++++++++++++++++++++ musl.h | 1 +...

> I'm seeing a memccpy read overflow on both lvm immediately on start and gdm when trying to login lvm2 uses it as `strncpy` implementation, https://sources.debian.org/src/lvm2/2.03.31-1/libdm/libdm-string.c/?hl=438#L438: ```c int dm_strncpy(char *dest,...

You could either try the patch from #1527 or build against musl, e.g. via [this](https://github.com/htop-dev/htop/compare/main...cgzones:htop:zz_musl?expand=1) script.

There might be still hidden usage of NSS modules, e.g. a static build reports: ``` /usr/bin/ld: /usr/lib/gcc/x86_64-linux-gnu/14/../../../x86_64-linux-gnu/libsystemd.a(src_basic_user-util.c.o): in function `get_group_creds': (.text.get_group_creds+0x84): warning: Using 'getgrgid' in statically linked applications requires at...

using stress(1) on FreeBSD 13.2 seems to report usage fine

> You also need to install the library in the CI job in CI-unixish.yml which runs the test in strict mode. Done. > Also the configuration seems to have an...

> > > ```c > > > struct selabel_handle *hnd = selabel_open(SELABEL_CTX_FILE, NULL, 0); // reports constVariablePointer > > > ``` > > > > > > This should depend...