mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
synced 2024-09-27 12:57:53 +00:00
bb07972fd6
strlcpy() reads the entire source buffer first. This read may exceed the destination size limit. This is both inefficient and can lead to linear read overflows if a source string is not NUL-terminated [1]. In an effort to remove strlcpy() completely [2], replace strlcpy() here with strscpy(). No return values were used, so direct replacement is safe. [1] https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy [2] https://github.com/KSPP/linux/issues/89 Signed-off-by: Azeem Shaikh <azeemshaikh38@gmail.com> Reviewed-by: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> Link: https://lore.kernel.org/r/20230530163001.985256-1-azeemshaikh38@gmail.com |
||
|---|---|---|
| .. | ||
| bootstr_32.c | ||
| bootstr_64.c | ||
| cif.S | ||
| console_32.c | ||
| console_64.c | ||
| init_32.c | ||
| init_64.c | ||
| Makefile | ||
| memory.c | ||
| misc_32.c | ||
| misc_64.c | ||
| mp.c | ||
| p1275.c | ||
| printf.c | ||
| ranges.c | ||
| tree_32.c | ||
| tree_64.c | ||