TR 24731 is a technical report prepared by the ISO C standardization committee, now partially incorporated as optional Annex K in the ISO/IEC 9899:2011 C Standard. Part 1 standardizes some safer bounds-checking functions for use in C and Part 2 relates to functions that do dynamic memory allocation.
The ISO C standardization committee (ISO/IEC JTC1/SC22/WG14) defined two technical reports:
TR 24731-1: Extensions to the C Library Part I: Bounds-checking interfaces
This includes functions such as
fopen_s()andstrcpy_s()andsprintf_s(), which should be in some sense more secure than earlier analogs in the standard C library, checking for null pointers and buffer overflows. They are based on, but not identical with, functions with the same names in the Microsoft C library.It is included as the optional, but normative, Annex K in the current standard, ISO/IEC 9899:2011 'Programming Languages — C'.
An evaluation from 2015 came to quite unflattering conclusions, basically wanting to recall it completely. n1967 Field Experience with Annex K - Bounds Checking Interfaces
TR 24731-2: Extensions to the C Library Part II: Dynamic allocation functions
This includes functions such as
asprintf()andvasprintf()which dynamically allocate enough space for the formatted output, and thegetline()andgetdelim()functions which are also defined in POSIX 2008, andstrdup(). These were not standardized in C 2011.
