libs icon indicating copy to clipboard operation
libs copied to clipboard

Add Fortify strings check to CI

Open LucaGuerra opened this issue 1 year ago • 7 comments

https://github.com/falcosecurity/libs/pull/1880 should have been caught in CI. It happened to be detected because @FedeDP ran the test suite on a machine that had fortify turned on and strlcpy() was a checked version instead of the regular one that is embedded in the libs repo. We need to look into how to enable the same checks in CI as well (in the ASan build, so we can get a stack trace)

LucaGuerra avatar May 29 '24 12:05 LucaGuerra

/milestone 0.18.0

This is great, thanks for opening Luca! Big enormous huge +1 from me.

FedeDP avatar May 29 '24 12:05 FedeDP

Not blocking for 0.18.0, but it'd be nice to have it. I briefly took a look at it at some point and it looks like we need to implement it ourselves sadly

/milestone 0.19.0

LucaGuerra avatar Aug 27 '24 12:08 LucaGuerra

/milestone 0.20.0

FedeDP avatar Nov 13 '24 09:11 FedeDP

/milestone 0.21.0

FedeDP avatar Jan 08 '25 09:01 FedeDP

/milestone 0.22.0

FedeDP avatar Apr 02 '25 10:04 FedeDP

Issues go stale after 90d of inactivity.

Mark the issue as fresh with /remove-lifecycle stale.

Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Provide feedback via https://github.com/falcosecurity/community.

/lifecycle stale

poiana avatar Jul 01 '25 16:07 poiana

/remove-lifecycle stale

FedeDP avatar Jul 21 '25 08:07 FedeDP