On Tue, 10 Dec 2019 at 06:22, Andrew Pinski <pins...@gmail.com> wrote: > > On Mon, Dec 9, 2019 at 10:14 PM li zi <lubury...@hotmail.com> wrote: > > > > Hi All, > > We are using gcc in our projects and we found some of the C standard > > functions (like memcpy, strcpy) used in gcc may induce security > > vulnerablities like buffer overflow. Currently we have not found any > > instances which causes such issues. > > Are you using GCC as a compiler or the sources of GCC to do something > else? If you are using it as a compiler, GCC does NOT provide the > libc functions, another project (e.g. glibc) provides those.
And glibc considers them not useful and so doesn't provide them, see http://www.open-std.org/jtc1/sc22/wg14/www/docs/n1967.htm Your question would have been more appropriate on the gcc-help mailing list, as you're not discussing development of GCC itself.
