[Owasp-esapi-c++] "Export" Macro
Jeffrey Walton
noloader at gmail.com
Thu Aug 4 18:45:05 EDT 2011
Hi All,
Both Linux and Windows offer methods to mark a function as exported.
Marking functions as such has a few benefits, such as reducing the
size of an export table. In addition, marking a function will make it
easy for us to locate functions which might be subject to extra
scrutiny by an attacker. See http://gcc.gnu.org/wiki/Visibility and
http://msdn.microsoft.com/en-us/library/a90k134d%28v=VS.90%29.aspx.
Does anyone oppose an ESAPI macro to handle visibility and mark
functions for extra analysis during audits? If not, suggestions for
the macro are welcomed. Is ESAPI reserved for anything? ESAPI_API
sounds kind of corny.
Jeff
More information about the Owasp-esapi-c++
mailing list