Difference between revisions of "Cpp Coding Standards/SECURITY"

From Apache OpenOffice Wiki
Jump to: navigation, search
 
m
Line 2: Line 2:
 
Some errors may be entry points for malicious software.
 
Some errors may be entry points for malicious software.
 
----
 
----
=== Rules ===
+
=== Summary ===
 
+
 
==== NoUnsafeFunctions ====
 
==== NoUnsafeFunctions ====
 
Don't use functions that are known to have security issues (strcpy etc.)
 
Don't use functions that are known to have security issues (strcpy etc.)
Line 15: Line 14:
 
==== NoIntegerOverflow ====
 
==== NoIntegerOverflow ====
 
Be aware that integers have limited range.
 
Be aware that integers have limited range.
 +
 +
----
 +
=== Explanations ===
  
 
----
 
----
 
[[Category:Coding Standards]]
 
[[Category:Coding Standards]]

Revision as of 18:19, 27 November 2006

Security

Some errors may be entry points for malicious software.


Summary

NoUnsafeFunctions

Don't use functions that are known to have security issues (strcpy etc.)

ValidateInput

Validate all input coming from external.

NoBufferOverflow

Check range and validity of buffers.

NoIntegerOverflow

Be aware that integers have limited range.


Explanations


Personal tools