On 05/29/2012 06:45 PM, Paolo Carlini wrote:
Hi,
This patch evaluates _FORTIFY_SOURCE in a way similar to GNU libc.
If set, std::vector::operator[] throws if the index is out of bounds.
This is compliant with the standard because such usage triggers
undefined behavior. _FORTIFY_SOURCE users expect some performance hit.
Indeed. But at the moment I don't clearly see how this kind of check relates to
debug-mode.
Debug mode changes ABI, doesn't it?
Library patches should go to the library mailing list too (especially so when
controversial ;)
Uhm, I forgot about the library mailing list. Will resubmit there.
--
Florian Weimer / Red Hat Product Security Team