Thanks to q66's relentless testing, a couple of issues have been found in fortify-headers 2.2, and have been mercilessly fixed in this brand new 2.3 release. As usual, kudos to the Gentoo Hardened and Chimera Linux users for being willful guinea pigs.
Changelog
- Set the
srtpparameter ofvasprintf/asprintfto NULL upon error, like done on most BSD systems, so that it'll result in a null-ptr-deref upon usage on unchecked error code. - Improve the testsuite reliability with regard to gcc.
- Fix some overlap mismatch, caught via
char c[32]; memcpy(c, c + 16, 16). - Disable pedantic checks by default, since some high-profile programs are relying on them.