Difference between revisions of "Cpp Coding Standards/SECURITY"
From Apache OpenOffice Wiki
m (Cpp Coding Standards/Topics/SECURITY moved to Cpp Coding Standards/Security: Improve Cpp_Coding_Standards structure.) |
|||
Line 1: | Line 1: | ||
− | + | Topic-Id: '''SECURITY''' | |
+ | |||
Some errors may be entry points for malicious software. | Some errors may be entry points for malicious software. | ||
---- | ---- | ||
=== Summary === | === Summary === | ||
− | ==== | + | ==== No Unsafe Functions <span id="UnsafeFunc">(UnsafeFunc)</span> ==== |
Don't use functions that are known to have security issues (strcpy etc.) | Don't use functions that are known to have security issues (strcpy etc.) | ||
− | ==== | + | [[/UnsafeFunc|Details]] |
+ | |||
+ | ==== Validate Input <span id="ValInput">(ValInput)</span> ==== | ||
Validate all input coming from external. | Validate all input coming from external. | ||
− | ==== | + | [[/ValInput|Details]] |
+ | |||
+ | ==== No Buffer Overflows <span id="BuffOver">(BuffOver)</span> ==== | ||
Check range and validity of buffers. | Check range and validity of buffers. | ||
− | ==== | + | [[/BuffOver|Details]] |
+ | |||
+ | ==== No Integer Overflows <span id="IntOver">(IntOver)</span> ==== | ||
Be aware that integers have limited range. | Be aware that integers have limited range. | ||
− | + | [[/IntOver|Details]] | |
− | + | ||
---- | ---- | ||
[[Category:Coding Standards]] | [[Category:Coding Standards]] |
Revision as of 22:45, 29 November 2006
Topic-Id: SECURITY
Some errors may be entry points for malicious software.
Contents
Summary
No Unsafe Functions (UnsafeFunc)
Don't use functions that are known to have security issues (strcpy etc.)
Validate Input (ValInput)
Validate all input coming from external.
No Buffer Overflows (BuffOver)
Check range and validity of buffers.
No Integer Overflows (IntOver)
Be aware that integers have limited range.